PRIVACY POLICY
TTA Relocation are committed to protecting and respecting your privacy and safety of your personal data. Our overriding principle is that we treat all personal data as confidential. This Privacy Policy sets out the basis on which any personal data we collect from you or that you provide to us will be processed by us and further how you can exercise your rights under the General Data Protection Regulation (GDPR).
DATA CONTROLLER AND CONTACT INFORMATION
The data controller is TTA Relocation. If you have any questions, comments or requests regarding this Privacy Policy, please feel free to contact us at:
Data Protection Officer
TTA Relocation POBOX 669 Walton on Thames KT12 9HY
01932 881051
PURPOSES AND LAWFUL BASIS FOR PROCESSING PERSONAL DATA
We may collect, process and use your personal data in the course of supplying our services to you and to manage our relationship with you, in the following ways:
Processed under the lawful basis of Contract:
- When you enquire about or purchase services from us, we will collect personal information to enable us to respond to your enquiry and to process and complete the required service. This may include information contained in emails or other correspondence from you and records of telephone calls and meetings with you.
- Details of the fulfilment of our services to you.
- We collect personal information from you when you apply for a job with us to enable us to contact you and process your application.
Processed under the lawful basis of Legal Obligation:
- We collect and process your personal information for producing invoices and accounting purposes which is required to meet HMRC legislation.
- To carry out our obligations arising from any contracts entered into between you and us.
- We collect personal information from employees to enable us to meet employment law obligations.
WHO WE SHARE YOUR PERSONAL DATA WITH
We do not share your data with any other third parties except:
- if you have given your consent.
- if it is necessary to enable the provision of third party services you have requested (for example to engage professional advisors including lawyers, bankers, accountants, Insurers, mortgage brokers, estate agents, letting agents etc).
- if we are under a duty to comply with any legal obligation.
THIRD PARTY RECIPIENTS OF YOUR DATA
Data processors are third parties who provide elements of our business management services for us, who process or store personal data on our behalf. The categories of these recipients include accounting, software, and website providers.
WHERE WE STORE YOUR PERSONAL DATA
We use only reputable mainstream server locations for data storage. The data that we control may be transferred to and stored at a destination outside the European Economic Area. By consenting to us using your personal data, you agree to this transfer, storing and or processing. We will take reasonable steps to ensure that your data is treated securely and in accordance with this privacy policy. Once we have received your information we will use procedures and security features to prevent unauthorised access.
In addition, we limit access to your personal data to those employees, agents contractors and other third parties who have a business need to know such data. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
RETENTION PERIODS
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our clients, including Contact, Identity, Financial and Transaction Data, for six years after the end of the financial year in which they cease being customers for tax purposes.
We may retain personal data about employees of clients for as long as we continue to work with the client, and as long as it is necessary for us to retain that data and will only do so in accordance with the data retention periods set out in our clients’ privacy notices.
In some circumstances you can ask us to delete your data. Please see below for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
YOUR RIGHTS IN REGARD TO YOUR PERSONAL DATA
You have a number of rights in regard to your personal data. These include the right to request access to, rectification or erasure of personal data we hold, or restriction of processing concerning your data, or to object to the processing as well as the right of data portability.
If you wish to exercise any of these rights, you should email the Data Protection officer.
Please note you will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
WEBSITE DATA
Our website may, from time to time contain links to and from the websites of third parties. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Should you decide to make use of our comment section in the blog we ask you to provide some minimal details that allow you to make best use of WordPress functionality.
COOKIES POLICY
Cookies are used on the website for two main purposes. Firstly, for google analytics tracking data. The tracking data provides us with collective information about how our users are using the website but does not identify or track an individual user behaviour. Secondly cookies are used to allow visitors to add comments to the blog section of the website. Our full Cookie Policy can be found here
RIGHT TO WITHDRAW CONSENT
Where we have processed your personal data on the lawful basis of consent, you have the right to withdraw this consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
RIGHT TO COMPLAIN
If you have any concerns about how we have handled your personal data, please contact us so we may address them.
You also have the right to lodge a complaint with the supervisory authority, the Information Commissioner’s Office, about how we manage your data.
PROVISION OF DATA
In most cases, the provision of your personal data is necessary to enter into a contract with us.
CHANGES TO THIS POLICY
We will regularly review this privacy notice and update it where necessary.