Privacy Policy – Website Visitors

Privacy Policy: Website Visitors

Summary

This privacy notice sets out what information we process when you visit any of our websites.

What data we hold

We generate log files from various servers: this will include an IP address assigned to you or, more likely, to someone who provides you with Internet access.

All our customer-facing platforms are accessible via our customer portal, and you can access this site at here.

Our website uses cookies or other similar technologies.

Using your information

References to the basis of processing (e.g. “(Basis: Art. 6(f).)”) are a reference to the article of the General Data Protection Regulation under which we undertake the processing in question.

Technical data

We use the logs from our servers to assist in our firm’s security, as well as to determine visitor behaviour and help us plan our strategy (e.g. such as working out which pages on the site are most popular, or whether particular events have caused an increase in traffic).

(Basis: Art. 6(c): we have legal and regulatory obligations to protect our customers and their information. Art. 6(f): strategy planning is a legitimate, indeed sensible, thing for a business to do.)


Your data and the EEA

We transfer or process these data outside the European Economic Area via our Cloud Services Provider. No other third party has access to these data.

Your rights

You have lots of rights in respect of our processing of your personal data but, since all we have is an IP address linked (at best) to your computer or phone, they are not particularly meaningful here. (If you want to browse the site and not give us “your” IP address, use a publicly available VPN or, or ask a friend to print out the pages for you!)

The relevant rights are:

  • get access to your personal data and information about our processing of it
  • restrict our processing of your data for strategy planning purposes, and compel us to erase the bits we do not use for security purposes
  • object to our processing for strategy planning purposes

If you want to exercise any of these rights, please just contact us.

You also have the right to lodge a complaint about our processing with a supervisory authority — you probably want the UK’s Information Commissioner’s Office.

Technical security

All data, where possible and practical, is securely transferred between our  servers and customers.

Retention periods

Server logs: up to one year, after which they are deleted automatically