Privacy Notice

Privacy Notice

Crown Surveillance Ltd

Reviewed 19 April 2018

 Introduction

The General Data Protection Regulation (GDPR) comes into force in the UK on 25 May 2018.  These regulations introduce changes to the information that an organisation must provide to individuals relating to how it uses and stores personal data. This is the lawful processing of personal data.

 

Personal Data, personally Identifiable Information (PII) is any information that can be used to identify you, for instance your:

  • Contact Details such as names, addresses, telephone numbers, and emails.
  • Financial Details such as bank details, salaries, debt judgements and bankruptcies.
  • Record of Products and Services you have applied for or obtained.
  • CCTV images.
  • Sensitive personal data such as disabilities

Data Controller

Crown Surveillance Ltd. is the controller of your personal data provided to, or collected by or for, or processed in connection with our Services.

As installers of CCTV, Door Access Control, Data and Voice Systems further information can be found under:

https://ico.org.uk/media/1542/cctv-code-of-practice.pdf

https://www.gov.uk/data-protection-your-business/using-cctv

This Privacy Notice applies to Crown Surveillance Ltd. We shall review and update it as necessary.

How Your Personal Data is Collected

We collect personal data from you when you provide, post or upload it to our services, such as when you fill out a form, email us, respond to a survey, or request a quotation.

To be able to provide a service, an account will be created for you and we need you to provide us a minimum of personal data including your name, address, an email for billing, phone contact details and account billing information. If you choose not to provide all of this basic personal data, we may not be able to offer you a service or there could be a delay in providing you with a service.

Most of the data is collected directly during applications but some indirectly.

For example:

  • directly from employees or providing us job application data
  • directly from customers or potential customers
  • directly from suppliers or potential suppliers
  • indirectly through a third party (for example, one branch of an organisation passing details of another wanting a service, this would be indirect marketing)
  • directly from ourselves to verify the personal data held
  • indirectly from Government Departments or professionals (for example, with regards to pensions and salaries)

How Your Personal Data is Used 

Our lawful basis for processing your personal data will include.

  1. To perform a contract, for example:
  • As a quotation prior to entering a contract
  • To perform our contractual obligations such as installation of services
  • Repairing of services
  • To contact you about your account, administering accounts for payments
  • To follow up with an aftercare service 
  1. For our own legitimate interests, for example:
  • For searching at a credit reference agency
  • To monitor calls, emails and other communication
  • To send you marketing communication
  • For internal business functions including salaries, pensions, auditing and legal obligations

 

  1. To comply with a legal obligation, for example:
  • When you make a request to exercise your rights
  • For compliance with legal and regulatory requirements
  • For prevention, detection and investigation of crime
  • preventing fraud, helping others to prevent fraud

 

  1. With your consent, for example:
  • When you request us to pass your details to other companies
  • Should any personal data be passed to us on behalf of a third party, then the third party must give their permission, together with the details of what they have agreed to, before we can accept it.

You may withdraw your consent at any time by contacting us on 0115 9465422, Monday to Friday, 8am – 4.30pm or email info@crown-cctv.co.uk

Sharing of Your Personal Data.

Subject to applicable data protection law, we may share your personal data to

  • Other companies providing services to you
  • Our professional advisors such as accountants
  • Debt collection agencies
  • Government bodies such as HMRC
  • Other companies if we restructure or sell the business
  • Law enforcement officials

We do not share personal data to a country or territory outside the European Economic Area.

How Your Personal Data is Stored and for What Period

A number of steps are taken to protect the privacy and security of your information, whether physical, electronic, technical or procedural safeguards. These include:

  • The use of BCC to email multiple users and protect the identity of all concerned
  • All computers are username and password protected
  • All paper information is locked in storage
  • Anti-malware scanning

If you are concerned about any possible loss of data, contact us immediately to investigate.

The ICO contact details for data protection breach can be found under

https://ico.org.uk/report-a-breach/personaldata-breach

 Your Personal Data is kept for as long as it is necessary to comply with applicable laws. In most cases, if there is no activity on an account, this will be for 6 years.

After this time physical data is securely destroyed.

Any personal data stored on computers is protected with usernames and a strong password. Active account holders’ details will remain for as long as the account is active. We will contact you periodically to verify the stored information. Should there be no activity, requests for further marketing and/or services, or response for verification of data for over 6 years then the account will be archived and no further correspondence will follow.

Your Rights with Respect to Personal Information

Should you raise any concerns to the way your data is handled, you have the right to complain directly to us or to the ICO at www.ico.org.uk

You have the right to

  • Be informed about the processing of your personal data
  • request a copy of your personal information
  • request the correction or deletion of your personal information
  • request restrictions of processing or object to that processing
  • from May 2018, request receipt or transmission to another organisation
  • object to direct marketing
  • not to be judged as part of an automatic decision making
  • withdraw consent at any time

       Who to Contact for Subject Access Requests (SAR’S)

If you would like to exercise your rights with regard to your personal information please contact us. You will receive a reply within a month.

There will be no charge for this information as long as the request is not manifestly unfounded or excessive. Should a request be refused, a reason will be given and you have the right to complain to the supervisory authority and to a judicial remedy.

Crown Surveillance Ltd.

Data Privacy, Unit 11, Huss’s Lane, Long Eaton, Nottingham, NG10 1GS

0115 9465422.