Privacy Notice

Please have a read through to find out how we will use your data. We recommend grabbing a cuppa and a nice biscuit, but this is optional.

Who is collecting and using your personal data?

1nsideout IT Solutions Ltd T/A Data Confidential, you can contact us via email: privacy@dataconfidence.co.uk

What are the legal bases for data processed by Data Confidential?

(1) Our legitimate interest to promote and operate our business

(2) Processing is necessary for the performance of a contract

(3) Compliance with a legal obligation

(4) Where you have given us consent

(5) To protect the vital interests of someone in the event of a critical incident

What data does Data Confidential need to process?

Personal data types

• Contact information (such as name, email address, phone number, etc.)

• Social Media profile information (LinkedIn, etc)

• Employer details

• Job role

• Voicemail

• HR

• Payroll

Where do we get your data from?

• Directly from you

• From publicly accessible sources (Social media, ICO, etc.)

• Data brokers

• Lead generation partners

How long do we keep data?

We keep data only for as long as we require it for the original purpose, or if we have an ongoing business relationship, for the duration of that or any other ongoing relationship we have, whichever is the higher.

How is my personal data being used?

Your personal data will be processed on a need to know, confidential basis by members of our staff for the following purposes.

• Employment

• Provision of services

• Marketing

• Surveys

• Accounts and record keeping

It may also be processed by third parties such as cloud service providers, website hosting companies, and similar as required. We may also need to share your data with third parties who provide professional services to us. Everyone with access to your data will treat it confidentially and in a compliant fashion.

We may also disclose your personal information to third parties:

If we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets; or

If we are under a duty to disclose or share your personal data to comply with any legal obligation, or to protect our rights, property, or safety, or that of our clients, or others. This includes exchanging information with other companies and organisations for fraud protection and credit risk reduction.

Where are my data processed?

We are based in the UK and where there is the ability to set data location, this will be set to UK and or the European Economic Area plus countries or organisations that have been assessed and deemed to have adequate protections in place for your data.

Sometimes we aren’t able to keep your data in these places, when this is the case, we will ensure that international transfers are lawful and have adequate protections in place, such a standard contractual clauses (SCCs), or binding corporate rules (BCRs).

How do we keep your data safe?

Our security measures include device encryption, email encryption, regular encrypted backups, two-factor authentication, state-of-the-art multi-layered malware (anti-virus) endpoint protection, staff training, and intruder alarms.

Will you sell my data?

No, we won't ever sell your data other than as part of our business if we were to consider selling our business.

What are my rights?

You have several rights that apply in different situations, such as the right to:

• Access to data we process about you – AKA subject access request (SAR).

• Withdraw any consent you have given to us.

• Ask us to rectify inaccuracies – We ask that you keep us up to date with any changes to your contact details.

• Request erasure of your personal data.

• Object to us processing your personal data.

• request restriction of processing your personal data

• portability of your data – In some cases you can request your data in a form that makes it easy to take to another controller.

If you would like more information about your rights or would like to use any of them please contact us at privacy@dataconfidential.co.uk

Do I have to give you my data?

No, there is no statutory or contractual requirement for you to give us your data. You are under no obligation to share your data with us.

If you don’t share your data with us we may have difficulties with providing our services that rely on any such data.

Do you use automated decision-making or profiling?

No

If you are still with us….

Hopefully, we have made this as open and transparent as possible.

We have done our best to write this notice in simple English, keeping it as brief as possible. If you have any questions about how your data is handled just ask, we will be happy to explain.

If you have a complaint or a concern, please contact us to discuss this, we take data protection very seriously and would like to resolve any issues that may occur.

If you are still unhappy, you have the right to contact a supervisory authority. The UK's supervisory authority is the Information Commissioner's Office (ICO)

Information Commissioner's Office

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF

Tel: 0303 123 1113 (local rate)

Document version: 2.0

Document issued: 16/04/2024