Definitions and interpretation
Data Protection Laws
Andrea Gillard Design, 'we'
UK and EU Cookie
collectively all information that you submit to Andrea Gillard Design via this Website. Where applicable, this definition applies to the definitions provided in the Data Protection Laws, including General Data Protection Regulation (EU) 2016/679;
a small text file on your computer by this Website when you visit certain parts of the Website and/or when you use certain features of this Website. Details of the cookies used by this Website are set out in the Cookies Policy;
any applicable law relating to the processing of personal Data including, but not limited to, the Directive 96/46/EC (Data Protection Directive) or the General Data Protection Regulation (GDPR), and any national implementing laws, regulations and secondary legislation, for as long as GDPR is effective in the UK;
the General Data Protection Regulation (EU) 2016/679;
Andrea Gillard Design of 10 Rushley Drive, Sheffield, S17 3EN;
the Privacy and Electronic Communications (EC Directive) Regulations 2003 as amended by the Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011;
any third party that accesses the Website anyone who is not (i) an employee of us, and acting in the course of their employment, or (ii) engaged as a consultant, or otherwise providing services, to us and accessing the Website in connection with such service provision; and
the Website that you are currently using, and any sub-domains
2. Unless otherwise stated, or the context requires different interpretation, the following is applicable:
a. the singular includes the plural and vice versa;
b. any reference to sub-clauses, clauses, schedules or appendices, are those of this website;
c. a reference to an individual includes companies, trusts, partnerships or Government entities;
d. "including" is understood to mean "including without limitation";
e. reference to any statutory provision includes any modification, or amendment, to it;
Scope of Policy
4. For the purposes of any applicable Data Protection Law, Andrea Gillard Design is the "data controller", which means Andrea Gillard Design determines the purposes for which, and the manner in which, your Data is processed.
5. The following personal data may be collected from you:
b. contact information such as email address, and 'phone numbers.
6. Data is collected in the following ways:
a. given to us by you, when you:
contact us through the Website, by telephone, post, email, or any other means;
register and/or set up an account with us;
complete, no-obligation, surveys that we use for research purposes;
enter a competition or promotion through a social media channel;
use our services;
b. collected automatically when accessing the Website, such as:
information to help us make improvements to the Website's content and navigation. This includes your IP address, the date, times and frequency with which you access the Website and the way in which you use and interact with its content.
7. Data for any, or all, of the above may be used by us to provide you with the best experience when visiting our Website, such as:
a. internal record keeping;
b. improvement of our products and/or services;
c. issuing of email marketing materials that may be of interest;
d. contact for market research, via email, telephone, or mail, to help inform Website updates or customising.
8. Our use of your data, as detailed above, is where we deem it necessary for legitimate interests. If you are not happy this this, in certain circumstances you have the right to object - please see section titled "Your Rights".
9. For the purposes of direct marketing via email, we will need your consent. This consent will be via opt-in or soft opt-in:
a. soft opt-in is a specific type of consent, applicable when you have previously engaged with us. (For example if you have contacted us to ask for information regarding a particular service and/or product, and we are marketing similar services and/or products). Under "soft opt-in" consent, your consent is taken as given unless you opt-out.
b. other types of e-marketing require us to obtain your specific consent, in that you need to take specific and affirmative action in order to consent, such as ticking as box that We provide.
c. if you are not satisfied with our approach to marketing you have the right to withdraw your consent at any time - please see section titled "Your Rights".
10. When you register with us and/or set up an account to receive products and/or services, you are entering into a contract with us and/or taking steps, at your request, to enter into a contract with us.
11. We may share your Data with the following groups of people, for the following reasons:
a. our employees, agents and/or professional advisors - to obtain advice from professional advisers;
b. third part providers who provide services to us that require personal data - to facilitate third party service providers (where appropriate) in receipt of any shared data, to perform functions on our behalf either for the smooth running of the Website, or in relation to any services procured from us.
c. relevant authorities - to facilitate the detection of crime, or the collection of non-payment, taxes or duties.
Keeping Data Secure
12. We will use technical and organisational measures to secure your Data, such as:
a. access to your account is controlled by a and user name that is unique to you;
b. our Data is stored on secure servers.
13. We are certified to ISO 27001. This family of standards helps us manage your Data and keep it secure.
14. Technical and organisational measures include measures to deal with any suspected Data Breach. If you suspect any misuse, loss or unauthorised access to your Data, please advise us immediately via this email:
15. If you would like detailed information on how to keep your Data safe and protect your computers and other devices online against fraud, identity theft, viruses or other online concerns, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and other leading businesses.
Responsibility to Young People
17. We will not knowingly collect information from any unsupervised individual under the age of 18 years. If you are under the age of 18 years, you must not use this Website or submit data to us unless you have consent, and are supervised by, a parent or guardian.
18. You have the following rights in relation to your Data:
a. Right to access - the right to request (i) copies of the information we hold on you at any time, or (ii) that we modify, update or delete such information. If we provide you with access to information we hold about you, we will not charge you for this unless your request is "manifestly unfounded or excessive." Where we are legally permitted to do so, we may refuse. If we refuse your request, we will advise you of the reasons.
b. Right to correct - the right to have your Data rectified if it is incomplete or inaccurate.
c. Right to erase - the right to request that we delete or remove your Data from our systems.
d. Right to restrict our use of your Data - the right to "block" us from using your Data or restrict the way in which we can use it.
e. Right to data portability - the right to request that we move, copy or transfer your Data.
f. Right to object - the right to object to our use of your Data including where we use it for our legitimate interests.
19. To make enquiries, exercise any of your rights set out above, or withdraw your consent to the processing of your Data (where consent is our legal basis for processing your Data), please contact us via this email: firstname.lastname@example.org
20. If you are not satisfied with the way a complaint you make in relation to how your Data is being handled by us, you may be able to refer your complaint to the relevant data protection authority. For the UK this is the Information Commissioner's Office (ICO) which can be found at https://www.ico.org.uk/
Much of this policy, but not all and not verbatim, was created adapting text provided by Rocket Lawyer https://rocketlawyer.co.uk