Factotum Group LLP (“We”) are committed to protecting and respecting your privacy.
This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
You can contact us at Factotum Group LLP of Spitalfields House, Stirling Way, Borehamwood, Herts, England WD6 2FX.
The General Data Protection Regulations, (GDPR), apply to companies that are based in the EU and global companies that process personal data about individuals who are based in the EU. At Factotum Group, we shall ensure that we do not just observe the requirements of the GDPR for those Users based in the EU, but that we adopt the GDPR principles of transparency, control and accountability for all our Users across the globe.
The GDPR gives our Users certain rights when using our Services, which include the right to:
The processing of your personal data by Factotum Group or a third party will be undertaken to fulfil the services agreed to complete our contractual obligations to you and any obligations to any regulatory bodies.
The processing of your personal data by Factotum Group or a third party may be undertaken if we have a legitimate interest to do so. In our case this includes:
Where we process your personal data by relying on your consent to do so, we shall ensure that such consent is:
We will collect and process the following data about you:
The legal basis for this processing is our legitimate interests, namely monitoring and improving our Website and enabling you to communicate with us and for us to send you reports and other material by request.
The information you give to us, we will use in the following ways:
You agree that we have the right to share your personal information with:
The majority of our data processing is conducted by software that uses industry-standard TLS (Transport Layer Security), protecting your personal data. They all have up-to-date security measures and protocols.
Internally, anyone processing your data only has access to the data of the particular clients they are working on.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Website or via email; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Anyone also has the right to request deletion of all their personal data a business holds, or modification of their data if it’s inaccurate or incomplete. GDPR requires the permanent removal or modification of any personal data. If you’d like your data permanently deleted or modified you can request to do so by emailing email@example.com, we will respond to your request within 30 days.
Your personal data shall not be kept for longer than is necessary, although it is not possible for us to always specify in advance how long this may be for. We may have to continue to store and process your data and also contact you directly relating to the completion of that service if it is necessary for our compliance with certain legal obligations.
We will only retain your personal data for as long as is necessary to fulfil the purposes for which it is collected.
When assessing what retention period is appropriate for your personal data, we take into consideration:
Although certain documents may legally belong to you, we may destroy correspondence and other papers that we store electronically or otherwise that are more than seven years old, except documents we think may be of continuing significance. You must tell us if you wish us to keep any documents for any longer period.
If you request your data to be deleted and you fall into this category, we will let you know:
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes. We will never disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at firstname.lastname@example.org.
Our Website may, from time to time, contain links to and from the Website of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act and you can request access to the personal data we hold on you and verify the lawfulness of the processing.
You can request access to your personal data we hold by emailing email@example.com. We will respond to your request within 30 days and any data will be provided in a machine-readable format.
Factotum Group, July 2020