Privacy Policy

This privacy policy tells you what will happen to any personal data that you provide to Stanley & Davis Ltd when you use our website or contact our organisation. We fully understand that your privacy is important to you and we are committed to protecting your personal data in line with the General Data Protection Regulation.

Our policy explains how we will use, and protect, any information that we gather, whether it be through our website, on the telephone or personal conversations or through our normal business contacts with you.  Below we have provided contact information if you have any questions on how we use and protect your data. The acceptance of this privacy policy and our cookie policy (see “Cookies” below) is required to make full use of our website.

Our details:

Organisation name        Stanley & Davis Ltd

Address                        21 New Road, Broomfield, Chelmsford, CM1 7AN

Telephone number        07944 659683

Email address                hello@stanleyanddavis.co.uk

We are registered with the Information Commissioner’s Office (ICO).

You can contact Laura Davis or Jennifer Stanley on the telephone number or email above.

Your rights

Under the General Data Protection Regulation (GDPR), you have the right to be informed about:

  • the collection and use of your personal data

  • our purposes for processing that data

  • the retention periods for storing your data (or a guarantee that it will be kept only for as long as necessary)

  • who it will be shared with (both in this country and, if applicable, in others: in this case, we will inform you of the safeguards which are applied in that country)

  • the legal basis under which we process your data

  • the right to withdraw your consent (if consent is the legal basis for processing)

  • our “legitimate interest” in processing your data (if that interest is the legal basis for processing)

  • details of any data we collect about you from a third party (such as publicly available information)

  • the right to lodge a complaint with the ICO

  • details of the existence of automated decision-making, including profiling (if applicable).

You also have the right to information that is concise, transparent, intelligible, easily accessible and presented to you in clear and plain language rather than in “legalese”. We encourage you to get in touch with us if you have any questions about this policy statement or our procedures with regard to data processing. This will not in any way affect your rights to complain to the ICO.

Information we collect

We may collect your personal and sensitive personal data such as your name, address, date of birth, contact details, e-mail address and sensitive personal information. We collect this information from client contacts and suppliers to allow us to undertake our business.

How long we keep your information

We will only keep your data for as long as there is either a statutory requirement for us to do so or because we are providing a service to you. If our business relationship has ended with you, we will be required to keep records for accounts and records purposes.

Why we need this information

We may need to keep your personal information for the following reasons:

  • for internal record-keeping

  • to manage our internal accounts

  • to provide services to you as per our business contract

  • to contact you via email, text message or phone if we have a business relationship or you have requested contact from us

  • to maintain our business relationship, where you are a client

  • if you have provided us with your consent, we may directly market our products and services, and let you know about any updates to our service. You will be able to unsubscribe at any time from receiving any further communications from us

  • to third parties where we have retained them to provide services that we, you or our client have requested – we ensure that any third parties comply with rules regarding privacy and data protection

  • to trusted third parties who perform functions on our behalf and who also provide services to us, such as professional advisors or IT consultants. We ensure that any third parties comply with rules regarding privacy and data protection

  • we may also release your personal information to regulatory or law enforcement agencies, if they require us to do so by law

The legal basis under which we collect and store data

We can collect and store data under six possible legal grounds under GDPR, these are:

  1. consent

  2. fulfilment of a contract

  3. legitimate interests

  4. vital interests

  5. public task

  6. legal obligation

Applying the data protection principles

We are committed to applying the principles set out in the GDPR, we strive to ensure that

  • personal data is collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes

  • our procedures are adequate, relevant and limited to what is necessary in relation to the purposes for which they are put in place

  • the data we collect is accurate and, where necessary, kept up to date, every reasonable step will be taken to ensure that data that is inaccurate, having regard to the purposes for which it is processed, are erased or rectified without delay

  • data is kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which they are processed

  • data is processed in a manner that ensures their appropriate security, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.

In applying these principles, we recognise that we have a general obligation to implement technical and organisational measures to show that we have considered and integrated data protection into all data processing activities.

Access to your data

You can object or withdraw your consent to the use of your personal information at any time. This may affect the services we are able to supply you.

Where Stanley & Davis Ltd is the data controller you are entitled to the following (subject to some legal exemptions):

  • request a copy of the personal information of which you are the data subject

  • to have any inaccuracies corrected

  • to have your personal data erased

  • to place restrictions on us processing your data

  • to object to processing

  • to request your data to be ported (data portability)

You may request details of personal information which we hold about you under the EU General Data Protection Regulation (GDPR) 2018. To make a request to access the data that we hold about you, please request this in writing to the address detailed above.

Information Commissioner’s Office

For more information on your rights regarding your personal data please visit the IC

https://ico.org.uk

Cookies

A cookie is a small text file placed on your computer or device by our site when you visit certain parts of it and/or use certain features. For example, we may monitor how many times you visit, which pages you go to, traffic data, location data, blogs and other communication data whether required for billing purposes or otherwise. We may also look at the originating domain name of a user’s internet service provider, IP address, operating system and browser type. This information helps us to build a profile of our users. Where appropriate, this data will be aggregated or statistical, which means that we will not be able to identify you individually.

Cookies are also used to remember your settings (language preference, for example) and for authentication (so that you do not have to repeatedly sign in). You can set your browser not to accept cookies and there are a number of websites which explain how to remove cookies from your browser. However, it is possible that some of our website features may not function as a result.

Third party websites

Please note that there are some links on our website to other sites where you may find useful information. This does not indicate a general endorsement of those sites and, as we have no control over how data is collected, stored, or used by other websites, we would advise you to check their privacy policies before providing any data to them.