We are committed to being transparent about why we process personal data, support the rights of data subjects over their personal data and protect the privacy of all the personal data we hold. This privacy notice explains how we use personal data and cookies and the rights you have over your personal data. It applies to:
- visitors to this website;
- our clients and those that may want to use our services;
- our suppliers
We review this notice on an annual basis to ensure it reflects our privacy practices, so please check this page occasionally to ensure that you’re happy with any changes. It was last updated on 14 May 2019.
We are WADIFF Consulting limited. Our registered address is First Floor, Telecom House, 125-135 Preston Road, Brighton, England, BN1 6AF, our company number is 09682376 .
We act as the ‘Data Controller’ for personal data and are registered with the Information Commissioner’s Office, our registration number is ZA201764. We only collect personal information required to meet stated purposes and where there is a lawful basis for doing it, and will not retain it for longer than is necessary. Any questions regarding our privacy practices should be sent by email to firstname.lastname@example.org.
Visitors to our website
We use a third party, WordPress.com, to manage the website. Hosting is done by Automattic Inc. We use a standard third-party WordPress service to collect anonymous information about the number of visitors and visitor behaviour patterns; this information does not identify individuals. For information about how WordPress processes data, please see Automattic’s privacy notice.
We try to avoid using cookies. At the time this privacy notice was reviewed no non-essential Cookies were being used.
If you use, or want to use, our services
We store personal data that allows us to provide our services and respond to requests for information about our services. This includes, but is not limited to, name, email address, postal address and telephone number.
If you are a client we keep your details for a period of 5 years after the contract ends. If you make an enquiry about our services, or provide us with your personal details, we keep your details for two years after the date of the last correspondence/meeting. We do not issue newsletters or do mass mailings.
We process personal data of clients to deliver for services to meet Contractual obligations, and under Legitimate interest to answer any questions about work done after a contract has ended. We process personal data to respond to requests about our services and provide quotes on the basis of Legitimate Interest.
We store personal data that allow us to contact and pay you. This includes, but is not limited to, name, email address, postal address, telephone number and bank account details.
We do not share this personal data. We keep supplier details for 10 years. We process personal data to meet Contractual obligations, and under Legitimate interest to answer any questions about work done when you are no longer a supplier.
Our security measures
We have physical, technical and administrative controls in place to protect personal data from unauthorised access, use and disclosure. We evaluate these safeguards on an ongoing basis to minimise risks from new security threats as they become known. However, as is the case with all websites, we are not able to guarantee security for data collected through our site.
Where we store personal data
We store the majority of personal data in the EEA, this includes services we use to manage our finances and make payments. We use cloud based services in the USA to store encrypted backups, transfer files and to keep notes of tasks being done. Services in the USA are signed up to the Privacy Shield.
Sharing personal data
We will share personal data is there if a legal obligation or duty to do this, e.g. with the police, for fraud protection or to enforce or apply our contractual terms. We process personal data in these circumstances on the basis on Legitimate Interest for preventing crime or suspected criminal activity, or enforcing our terms.
If we sell or buy any business or assets we may disclose personal data to the prospective seller or buyer of such business or assets. If WADIFF Consulting or substantially all of its assets are acquired by a third party, personal data will be one of the transferred assets.
Individuals have the following rights over their personal data
- to receive a copy, and information about its use
- to have it corrected
- to have it erased when we have no lawful basis to continue processing it
- to restrict its use
- to receive a copy of information you have provided to us in electronic format (where processing is done under Consent or for a Contract)
- to object to its use (where processing is done under Legitimate Interest)
Please use the contact details at the top of the page if you want to exercise any of your rights.
You can also register a complaint with the Information Commissioner’s Office https://ico.org.uk/concerns/