1.0 PRIVACY AND DATA PROTECTION POLICY
- Your privacy and data protection are human rights
- We have a duty of care for your data
- We only collect and process your data when absolutely necessary
- We will not knowingly sell, share or otherwise distribute your data publicly or privately
Along with our business and internal procedures, this website is designed to comply with the following legislation:
- UK Data Protection Act 1988 (DPA)
- EU Data Protection Directive 1995 (DPD)
- EU General Data Protection Regulation 2018 (GDPR)
3.0 PERSONAL INFORMATION THIS WEBSITE COLLECTS AND WHY
This website collects and uses the following personally identifiable information and for the following reasons:
3.1 Website interaction and visitation
Like many websites, this one uses Google Maps to embed an interactive representation of our location on our contact us page. By visiting the contact us page with cookies enabled in your internet browser, Google Maps may be able to record data such as your approximate geographical location, device, internet browser and operating system, however none of this information personally identifies you to Rea's of Finvoy. Google Maps may also record your IP address. We consider Google a third party data processor.
Google Maps is not required for the normal functioning of this website and disabling cookies on your internet browser will stop Google from tracking any aspect of your visit.
If you do not agree to these terms and conditions please discontinue your use of this website.
3.2 Contacting us
If you choose to contact us using any of the available forms, none of the data you provide will be stored by this website. The data will be assembled into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). Our SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices via secure TLS connections to our mail server.
The implications of using GMAIL to send email from the web server via Google servers are managed separately in accordance with privacy policies set out by Google (see Section 5.0 below).
We kindly request that you do not submit personally identifiable or financial information via the contact forms that has not been explicitly requested. If such information is detected, it will be immediately deleted and your enquiry may not be acknowledged.
Once you submit information via the available forms, you hereby give your consent for us to use that information as described in these terms and conditions. If you do not agree with this you should refrain from submitting any information. You also give consent to use your information as expressed by agreeing to these terms and conditions via the opt-in banner presented when you first visit this website.
4.0 THIS WEBSITE'S SERVER
This website retains a log of all access and request activity for the purposes of maintaining data and network security and stability.
These logs currently contain a record of your IP address and other potentially identifiable information based on the website that immediately preceded your visit to reas-of-finvoy.co.uk (otherwise known as referral links). The logs are retained for no more than 30 days on a rolling basis in an unencrypted (but publicly inaccessible) format. For instance; this means if you are reading this right now, there's a record of you having viewed this page at the moment you navigated to it and a potential record of the page you visited before this one for no more than 30 days from today. It does not mean that any of those records can personally identify you without further processing which we do not and will not ever knowingly engage in. Please note; this is in no way related to your Internet Service Provider (ISP) which is likely to be actively logging your web browsing activity.
All server logs are accessible by a tightly controlled and small number of individuals only for the purposes outlined in these terms and conditions.
This website is hosted by Pixelmodified in a UK data centre with services provided by IFDNRG Ltd. which is a trusted web hosting provider based in Edinburgh, Scotland.
All traffic (transfer of data) between this website and your internet browser is encrypted and delivered via the secure hypertext protocol (HTTPS).
5.0 THIRD PARTY DATA PROCESSORS
We use various third parties to process personal data on our behalf. They comply with legislation set out in section 2.0 despite residing in the USA and are EU-U.S Privacy Shield compliant.
6.0 DATA BREACHES
We will report any unlawful or unintentional compromise of personally identifiable information within the scope of this website, including those relevant to our third party data processors with 72 hours to any and all relevant authorities.
7.0 DATA CONTROLLER
We handle all data internally.
Please contact us if you have any concerns about your use of this website or any data that we may hold on you.
8.1 Change log
- 13/05/2018 - 3.1 Website interaction and visitation: updated to correct reference to third party data processors section
- 13/05/2018 - 3.2 Contacting us: updated to reflect opt-in policy; removed GMAIL email retrieval method; added webmail method of email retrieval; clarified implications of using GMAIL to send email from the web server
- 13/05/2018 - 4.0 This website's server: updated to reflect log retention policy; updated to reflect 'potential' collection of referral page
Last updated: 13 May 2018