General Data Protection Regulations (GDPR) Statement
At CommsProvider we recognise the importance of protecting and respecting your data and we want you to be confident that any information we hold about you is safe. In line with new regulations effective as of 25th May 2018 this document is intended to give an overview of the information we collect from you, how we use that data, the safety of the data and how you can view, amend or remove that data from our systems.
What data is collected
The personal data collected by us will depend on the nature of the contract or agreement in place but may include some or all of the following:
- Contact Name
- Job Title
- Telephone Number
- Email Address
- Home & Business Address
- Communication History
- Date of Birth
- Billing Data
How the data is used
- To fulfil the requirements of any contract or agreement entered into
- For the management of the relationship between CommsProvider and its customers
- For analysis purposes to continually provide the best level of customer service and after care possible
- For the purpose of promoting CommsProvider products/services that may be of relevance
From time to time and depending on the nature of the agreement or contract it may be necessary to share the information collected with 3rd parties in order to ensure all contractual and legal obligations are met.
How long the data is kept
The data collected by us will be kept for the duration of the contract or agreement in place and depending on the contract or agreement for as long as is reasonable afterwards to ensure compliance with regulations and guidelines in place at the time.
How the data is stored
The data collected is stored on our internal network servers and cloud-based Customer Relationship Management (CRM) System. Some data in hard copy form may be stored in secure filing systems.
We have put in place access rights, password protected databases and files and routine password changes to ensure that all data kept is safe from theft, loss or destruction.
Who accesses the data
The data is only accessed and processed by members of the CommsProvider team that are trained and employed to do so. And where required as part of the contracts or agreements in place 3rd parties may access and process the same data
What happens if there is a breach
Although CommsProvider will make every endeavour to protect personal data, in the event of a data breach CommsProvider will without undue delay notify those affected and exercise best efforts to mitigate the effect and minimise any damage.
- The right to access – at any point any of the personal data held by CommsProvider can be accessed by the individual to whom it relates
- The right to rectification – in the event that the personal data held by CommsProvider is inaccurate or incomplete the individual to whom it relates can have the data rectified
- The right to be forgotten – at any point an individual can request that any data held by CommsProvider about them be erased / returned
- The right to restrict – individuals can request that the data processed by CommsProvider be restricted
- The right to data portability – this allows individuals to move, copy or transfer the data held by CommsProvider to another environment for their own purpose
- The right to object – individuals have an absolute right to stop their data being used or processed in certain circumstances
- Rights relating to automated decision making – individuals are protected against the potential risk of being harmed by decisions made without human intervention.
From time to time and to comply with legislation and regulations in place, changes may be made to this document, CommsProvider’s terms and conditions and other relevant policies.
If you have any queries or concerns or wish to exercise any of the above rights in relation to any personal data that we hold of yours please contact us via post, telephone or email:
HR & Compliance | CommsProvider
The Continuum | Moderna Business Park
Mytholmroyd | West Yorkshire
0345 855 0700
Please note that any requests relating to your personal data will require proof of identity.