What information may be collected?
When you visit our website, your IP address (the unique address which identifies your computer on the internet) will automatically be logged by our web server. We may automatically collect non-personal information about you such as the type of internet browsers you may use or the site from which you linked to from our website. You cannot be identified from this information and it is only used to assist us in providing an effective service.
We may collect personal information about you when you contact us with an enquiry or in response to a communication from us. The personal information would comprise your name, email address, telephone number and company.
How is the information used?
We will use your personal information for basic profiling purposes and to track and monitor the usage of our website and help us understand the patterns of site visitors. This will help us operate the site more effectively, identify what sort of information is of interest to our Clients and assist us in business.
Any personal information collected will be retained only as long as is strictly necessary for the purpose.
Will my personal information be provided to third parties?
We do no, sell or distribute personal data to third parties and may only share it with third parties in the strictly limited circumstances set out below.
– We may supply your personal information to third party service providers (such as our internet service providers who help us administer our website). These third parties must at all times provide the same levels of security for your personal information as Verbatim and will be bound by a legal agreement to keep your personal information private, secure and to process it only on the specific instructions of Verbatim.
– We will supply your personal information to our hosting administrators who are based in the EU.
– We may also supply your personal information to government bodies and law enforcement agencies but only: if we are required to do so by the requirements of any applicable law; if in our good faith judgement, such action is reasonably necessary to comply with legal process; to respond to any legal claims or actions; or to protect the rights of the Company, its customers and the public
– We may allow other people and organisations to use personal information we hold about you If we, or substantially all of our assets, are acquired or are in the process of being acquired by a third party, in which case personal information held by us, about our customers, will be one of the transferred assets.
Will my personal data be transferred overseas?
In certain circumstances, we may transfer your personal data to countries outside the European Economic Area. This may include circumstances where we use service providers who are based outside the EEA, Where we transfer your information outside the EEA, we will make sure that it is protected in a manner that is consistent with how your information will be protected by us. This can be done in a number of different ways for instance:
- The country that we send the data to might be approved by the European Commission.
- The recipient company might have signed up a contract obliging them to protect your information.
- The recipient is located in the US and is a certified member of the EU-US Privacy Shield scheme.
In other circumstances the law may permit us to otherwise transfer your information outside the EEA. In all cases however, we will ensure that any transfer of your information is compliant with the Data Protection Legislation.
What security will exist?
We are committed to protecting the privacy of your personal data. We use appropriate standards of technology and operational security to protect personal information including a Secure Server (based in the EU) and network firewall connection. Operationally, access to personal information is restricted to authorised personnel who are under a duty to maintain the confidentiality and security of such information.
Internet and Data Storage
Personal information submitted by means of the Internet may be vulnerable to unauthorised access by third parties. Submission of personal information using the Internet is at your own risk. We will take reasonable and appropriate technical measures to ensure that your personal information is stored in a secure manner. However, we shall have no liability for disclosure of data due to errors in transmission or the fraudulent, negligent or other illegal acts of a third party, such as ‘hacking’. Any transmission of personal information on or through the use of our website is at your own risk.
We use Google Analytics tracking cookies to collect anonymous traffic data about how visitors use our site. We use the information to compile reports and to help us improve the site.
The Website may include links to other websites. We do not provide any personal information to these third-party websites. However, once you have used these links to leave our site, you should note that we do not have any control over the other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
We exclude all liability for loss that you may incur when using these third party websites.
What are my rights under the Data Protection Legislation?
You have a number of legal rights in relation to the information that we hold about you, including:
Right to access: You have the right to request access to your personal data held by us. Requests are to be made in writing, electronically and information will be provided in a commonly used electronic format. Requests will be handled within one month of receipt of the request, and free of charge with the exception of where requests are manifestly unfounded or excessive we hold the right to charge a reasonable fee taking into account the administrative costs of providing the information. More information can be found at https://ico.org.uk/for-the-public/personal-information/.
Right to rectification: You have the right to have personal data rectified if inaccurate or incomplete. Where the personal data in question has been disclosed to a third party, they will be made aware of the rectification where possible. Requests are to be made in writing, electronically, and will be handled within one month of receipt of the request.
Right to erasure: You have the right to request the deletion or removal of personal data in the following circumstances:
- Where the personal data is no longer necessary in relation to the purpose for which it was originally collected/processed.
- When you withdraw consent.
- When you object to the processing and there is no overriding legitimate interest for continuing the processing.
- The personal data was unlawfully processed (i.e. otherwise in breach of the GDPR).
- The personal data has to be erased in order to comply with a legal obligation.
This does not provide an absolute “Right to be forgotten”. Where the personal data in question has been disclosed to a third party, we will inform them about the erasure of the personal data, unless it is impossible or involves disproportionate effort to do so. Personal data will be erased by removal from our internal and cloud servers.
Right to restrict processing: You have a right to ‘block’ or suppress processing of personal data if you contest its accuracy; have objected to the processing; processing is unlawful and you oppose erasure; we no longer needs the personal data but you require the data to establish, exercise or defend a legal claim. Where the personal data in question has been disclosed to a third party, we will inform them about the restriction on processing of the data, unless it is impossible or involves disproportionate effort to do so.
Right to data portability: You have the right to obtain and reuse your personal data for your own purposes. Requests are to be made in writing, electronically, and will be handled within one month of receipt of the request.
Right to object: You have the right to object to processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling); direct marketing (including profiling); and processing for purposes of scientific/historical research and statistics. Requests will be dealt with by immediate effect with no right for refusal.
You also have the right to make a complaint with the Information Commissioner at www.ico.org.uk if you think that any of your rights have been infringed by us.
All requests will be dealt with in your own merit, and in accordance with the Data Protection Legislation guidance.
Should a data breach occur, we have compliant procedures in place to investigate and report the matter to the Individual. In the event of a breach, it will be reported to you within 72 hours of discovery. A record of any breaches will be kept by the company.
You can exercise your rights by contacting us using the details set out in the “Contact Details” section below.
This website is owned and operated by Verbatim Services Limited, a company incorporated in England (Company Number 06804522) and whose registered office is at Winnington House, 2 Woodberry Grove, London, England N12 0DR.
HEAD OFFICE EDINBURGH:
Verbatim Services Limited
64a Cumberland Street
Edinburgh, EH3 6RE
Tel: +44 (0)131 512 209
Verbatim Services Limited
2 Woodberry Grove
Tel: +44 (0)203 4341934