For the purpose of the General Data Protection Regulations 2018, the data controller is Ten Ten Systems Ltd, 4 Abbey Square, Chester, Cheshire, CH1 2HU.
Our nominated representative for the purpose of the Act is Karen Birks.
INFORMATION WE MAY COLLECT FROM YOU
We may collect and process the following data about you:
- Information on you/your business that have been purchased from data lists only where you have opted-in to receive marketing information from a variety of sources. Any marketing correspondence that you receive will give you the opportunity to Unsubscribe from the list and your information be immediately deleted from our records.
- Information you provide to us by filling in forms on our website or by sending emails to any of our business emails to the domain @1010systems.co.uk.
- If you contact us by letter, we may keep a record of that correspondence.
- Information that you provide to us such as a company name, address and contact details including email address and telephone number.
- We may also store any relevant details of any or all of your employees in connection with their role in your organisation.
- To provide IT support we will also store security information as provided to us.
- We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them.
- Details of your visits to our site including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access.
We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration and to report aggregate information to our advertisers. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual.
For the same reason, we may obtain information about your general internet usage by using a cookie file which is stored on your browser or the hard drive of your computer. Cookies contain information that is transferred to your computer’s hard drive. They help us to improve our site and to deliver a better and more personalised service. Some of the cookies we use are essential for the site to operate. The cookies we use can be grouped into four separate categories:
- Strictly necessary
‘Strictly Necessary’ cookies allow you to navigate the website and use essential features like secure areas and online registration. These cookies don’t gather any information about you that could be used for marketing or remembering where you’ve been on the internet.
Since these cookies are essential in our being able to guarantee the performance of our website, should you disable them we won’t be able to ensure your security or predict how our website will perform during your visit.
This type of cookie collects information about how you use our website e.g. which pages you visit, and if you experience any errors. The information collected is anonymous and is only used to help us improve how our website works, gauge what interests our users and assess the effectiveness of advertising.
This type of cookie remembers your preferences for tools found on our websites, so you don’t have to re-set them each time you visit. Some of them are managed by third parties. They may for instance determine whether you see the latest or oldest comments made in relation to an article first.
These cookies are used to analyse what advertising might be most relevant to a user of the website based on the areas of the website that the user visits.
WHERE WE STORE YOUR PERSONAL DATA
Should your data be required to be shared with any person or organisation outside of the EEA, we will discuss this with the Customer and advise them of the reasons and term that the data will be shared and processed.
All information you provide to us is stored on our secure servers. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
USES MADE OF THE INFORMATION
We use information held about you in the following ways:
- To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
- To carry out our obligations arising from any contracts entered into between you and us.
- To allow you to participate in interactive features of our service, when you choose to do so.
- To notify you about changes to our service.
We may also use your data, or permit selected third parties to use your data, to provide you with goods and services which you have requested.
If you are an existing customer, we will only contact you by electronic means (e-mail) with information about goods and services similar to those which were the subject of a previous sale to you.
If you are a new customer, and where we permit selected third parties to use your data, we (or they) will contact you by electronic means only if you have consented to this.
If you do not want us to use your data in this way, please contact us to identify your wishes.
To show how we comply with the law we will keep clear records of our processing activities and of the decisions we make concerning personal data (setting out our reasons for those decisions).
HOW WE PROTECT YOUR DATA
We have put in place security procedures and technical and organisational measures to safeguard your personal information. Access to all internal data servers is limited to only necessary personnel and is controlled via active directory authentication using defined policies to control password expiry and renewal.
We ensure all our staff have confidentiality clauses within their contracts of employment and as a business are ISO27001 accredited and annually audited to maintain this. All locations that store any customer information are protected by enterprise class firewalls, antivirus and 24×7 proactive monitoring tools.
DISCLOSURE OF YOUR INFORMATION
We may disclose your personal information to any member of our company so that they may provide the services that we are contracted to you to do. We may also disclose your personal information to third parties under the following circumstances:
- in the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
- if Ten Ten Systems or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
- if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our rights, to view our terms and conditions of use and other agreements; or to protect the rights, property, or safety of Ten Ten Systems, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
Should we require the assistance of a 3rd party sub-contractor to undertake any of the duties that you have contracted us to undertake, we will ensure that we will contact you to arrange this and that there will be a similar contract in place with that sub-contractor.
DURATION OF PROCESSING YOUR INFORMATION
Prospective Customers – we will store and process your data for the purpose of informing you of our various services and industry news for the term that it is licensed to us. You have the right to be removed from our marketing list at any time by clicking on the Unsubscribe link on the email.
Existing Customers – we will store and process your data for the purpose of carrying out all of the services that you have entered into a contract with us to provide along with providing you with information on our other services (if any) and industry news that may help develop your understanding of issues that affect your organisation. At such time as your contract with us is terminated, we will act on the Customer’s instructions as to how they wish us to handle the data we hold on them.
Where staff, 3rd party suppliers or sub-contractors think that this Policy has not been followed, or data might have been breached or lost, this will be reported immediately to the Data Protection Officer who, in turn, with notify the Customer.
We will keep records of personal data breaches, even if we do not report them to the ICO.
We will report all data breaches which are likely to result in a risk to any person, to the Customer and the ICO. Reports will be made to the ICO within 72 hours from when someone in the organisation becomes aware of the breach.
This can include situations where, for example, bank account details are lost or an email containing sensitive information is sent to the wrong recipient. Informing data subjects can enable them to take steps to protect themselves and/or to exercise their rights.
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by ticking certain boxes on the forms we use to collect your data or Unsubscribe from the email campaign. You can also exercise the right at any time by contacting us at firstname.lastname@example.org.
You have the right to ask what information we hold on you/your organisation and we will provide that information to you in a timely manner. Should you wish to audit or inspect the type of information we hold, please contact us to arrange this.
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
By submitting your personal information you consent to the use of that information as set out in this policy. You may withdraw your consent at any time by writing to us either by email to the Data Controller at email@example.com or by post to 4 Abbey Square, Chester, Cheshire, CH1 2HU.
ACCESS TO INFORMATION
You have the right to request a copy of the information that we hold about you. If you would like a copy of some or all of your personal information, please send an email to the Data Controller using the contact details set out in paragraph 10 above.
We want to ensure that your personal information is accurate and up to date. If any of the information that you have provided to us changes, for example if you change your email address or name, please let us know the correct details by writing to our Data Controller as above. You may ask us, or we may ask you, to correct information you or we think is inaccurate, and you may also ask us to remove information which is inaccurate.
HOW TO CONTACT US