GDPR Privacy Notice
At Direct Imaging Supplies Ltd, we have always taken the protection and management of customer data extremely seriously. As new regulations come into place, we will continue to lead the way when it comes to being open and honest about how we use your data.
The purpose of this Privacy Notice is to explain how and for what purposes we process your personal data. It applies to personal data that is processed electronically and on paper.
Who we are: -
We are Direct Imaging Supplies Ltd and our head office address is:
Direct Imaging Supplies Ltd
Ground Floor, The Maltings
Data privacy key terms.
‘Personal data’ means any information relating to a living person or ‘data subject’ that can be used to directly or indirectly identify the person. This can include information that when put together with other information can then identify a person.
For example, this could be:
- Identity information (e.g. name, address, telephone number, credit card number)
- Health and genetic records and biometric data
- Racial and ethical data
- Data on political opinions
- Data on sexual orientation
- Web data (e.g. location data, IP address, cookies).
‘Processing’ means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means.
Why we process your personal data
We collect and process personal data about you in order to:
- Manage the services we provide
- Train and manage the employment of our staff who deliver those services
- Help investigate any enquiries or complaints you make about our services
- Check the quality of services
- For research and planning of new services.
How the law allows us to use your personal data
There are a number of legal reasons why we need to collect and use your personal data. Generally, we collect and use personal information where:
- You have entered into a contract with us for the provision of goods and services
- There is a legitimate interest in doing so
In addition, we may use your personal information where:
- It is necessary to protect someone in an emergency
- It is necessary for employment purposes
- You have made your information publicly available
We shall not use your personal information for any other purpose unless we have obtained your specific consent to do so.
If we have obtained your consent to use your personal data, you have the right to withdraw it at any time. If you want to withdraw your consent, please contact our Managing Director so we can deal with your request.
Our Data Protection Officer can be contacted by…
- Email – dataprotection@Directimaging.co.uk
- Phone – 01653-917999
You have the following rights in respect of your personal data:
- The right to access the personal data we are holding about you
- The right to have your personal data rectified where it is inaccurate or incomplete
- The right to have your personal data erased in certain circumstances, for example where the personal data is no longer necessary in relation to the purposes for which we have collected them as set out above
- The right to obtain restriction of processing in certain circumstances, for example where you have contested the accuracy of the personal data, for the period enabling us to verify the accuracy of the personal data
- The right to lodge a complaint to the Information Commissioners Office (ICO) that acts as the UK regulator
- The right to object to processing
- The right to data portability, i.e. to receive your personal data in a structured, commonly used machine readable format, and to have that personal data transmitted directly to another data controller
- The right to withdraw your consent, at any time, for the processing of your personal data.
When we receive a request from you in writing, (which is called a Subject Access Request) we must give you access to all the personal data we hold about you.
However, we cannot let you see any parts of your record which contain:
- Confidential information about other people
- Data we believe will cause serious harm to you or someone else’s physical or mental wellbeing
- Data we believe would enable you to stop us from preventing or detecting a crime.
Where your personal data has been shared with other individuals or organisations, we will do what we can to make sure that those parties also comply with data privacy laws.
Retention of your personal data
We will retain your personal data for as long as necessary for the purposes already set out above, or for as long as it is required by law.
Please note that we cannot delete your information where:
- We are required to retain it by law
- It is necessary for ongoing legal claims
If you cannot ask for your records in writing, you can submit a query about access to your personal data by contacting our Data Protection Officer (DPO) by:
Sharing your personal data
We use a range of organisations to help deliver our services to you. Where we have these arrangements, there is always an agreement in place to make sure that the external organisation complies with data protection law.
Protecting your personal data
We do all that we can to make sure we hold your personal data in a secure way, and we only share personal data with those who have a right to see it. Examples of our security measures include:
- Controlling access to systems and networks allows us to stop people who are not allowed to view your personal information from getting access to it
- Training for our staff allows us to make them aware of how to handle information and how and when to report incidents when something goes wrong
- Regular testing of our technology and ways of working; including keeping up to date on the latest security updates (commonly called patches).
Storage of your personal data
The majority of personal data processed by us is stored on information systems in the United Kingdom (UK). There are some occasions where your information may leave the UK either in order to be transferred to another organisation or if it’s stored in a system outside of the European Union (EU).
We will take all practical steps to ensure that your personal data is not sent to a country that is not seen as ‘safe’ either by the UK or EU Governments. If we need to send your information to an ‘unsafe’ location, we will always seek advice from the Information Commissioner’s Office (ICO) first.
Help and advice
If you have any enquiries or concerns about how your personal information is handled please contact our Data Protection Officer at the above.
For independent advice about data protection, privacy and data sharing issues, you can contact the Information Commissioner’s Office (ICO) by:
- Email: firstname.lastname@example.org
- Phone: 0303 123 1113 (local rate) or 01625 545 745
- Letter to:
Information Commissioner’s Office
Cheshire SK9 5AF
Further independent advice about data protection, privacy and data sharing issues is available from the Information Commissioner’s Office, see:
- Information Commissioner’s Office (ICO)Opens new window.
If you have any questions, please feel free to email dataprotection@Directimaging.co.uk