Ready Made Gates Privacy Notice
In compliance with data protection regulations, this privacy policy explains what personal information we collect from you when you visit our website, purchase our products via on our corporate customers, you work with us as an employee, or you are a trade customer.
If you are consumer we have a separate policy that covers the processing of your personal data. This is available on our direct sales website at https://readymadegates.co.uk
At the Ready Made Gates we are committed to processing personal information about our customers in ways that comply with our legal and regulatory obligations, and to being clear with customers about what we do with your personal information.
We are committed to protecting and respecting your privacy and we do not share personal information with other companies for marketing purposes.
The type of personal information we collect
We currently collect and process the following information:
- Identity Data: your first and last names.
- Contact Data: your address, telephone number, address and email address.
- Your transactional data: e.g. details about your orders and deliveries. Please note, we do not store credit card details and all payments are processed securely by Barclaycard ePDQ or PayPal.
- Communication data: e.g. emails
- Video data via the CCTV on our properties (please see separate CCTV policy for more information)
- Candidate Data: information that you provide when registering your interest in an employment opportunity with us. This includes the contents of your CV and cover letter, such as your employment history, qualifications, experience and personal interests.
- Where your application is progressed then it may also include information obtained during interviews or assessments, information provided by referees and other opinions documented about your candidacy, as well as information about your right to work in the UK such as your nationality and other details contained in identification documents. In some circumstances we may also process information about your disability status, to ensure that we can make appropriate adjustments.
- Data relating to your employment such as financial information (e.g. remuneration and pension), performance and attendance
Special Categories of Personal Data
We do not routinely process any special category data of our direct customers. Any special category data processed would be shared with us by you in rare situations such as if there are any special requirements for delivery.
How we get the personal information and why we have it
We collect and process your data for different reasons in different circumstances, but we’ll only collect and process your data where we have a legal basis for doing so. Our purposes and legal basis for using each type of data are set out below.
Personal information is provided to us in a number of ways and depends on you relationship with us. Personal data may be provided to us by our corporate clients who you order our products from, or it may be provided to us directly, for example if you are an employee of Ready Made Gates. A small amount may also come from publicly available sources: e.g. Companies House, company websites etc. We then process it for one of the following reasons:
- To manage our relationship with you
- To respond to your enquiries
- To deliver and manage our products and services to you
- To take pre-contractual and contractual steps with you
- To copy with our legal obligations as a business
Data Sharing
Sometimes we might share your data with third parties. This could include:
- Service providers we use for specific purposes, such as for our IT systems.
- Regulatory authorities, law enforcement agencies and courts.
- In the event of a sale of all or a part of our business, the buyer and its professional advisers.
Under the UK General Data Protection Regulation (UK GDPR), the lawful bases we rely on for processing this information are:
- Your consent. Where consent has been given, you are able to remove your consent at any time. You can do this by contacting us.
- We have a contractual obligation.
- We have a legal obligation.
- We have a vital interest.
- We need it to perform a public task.
- We have a legitimate interest.
Keeping your data correct
We are committed to keeping your information up to date. If you believe that we have made an error, then please contact us as we have outlined below and we will use reasonable endeavours to correct.
Keeping your information safe and secure
We are committed to keeping personal information secure to protect it from being inappropriately or accidentally accessed, used, shared or destroyed, and against it being lost. We endeavour to ensure that our suppliers take similar steps to keep your data secure. We take organisational measures to keep information secure and provide regular training for staff on data protection.
However, we understand that even the best laid plans can sometimes go wrong, and therefore we have developed and rehearsed a breach management process. In the unlikely event that we, or one of our partners of suppliers, accidentally compromise the confidentiality, integrity or availability of your data, then we will endeavour where required, to notify you, and other relevant parties such as the ICO, within 72 hours of becoming aware of the incident. We will do this by informing you via the contact details we have recorded for you.
Third Party (Sub-Processor) organisations
For our general day to day data processing activities, we use third party organisations to help us administer and monitor the services we provide:
- for the provision of IT and software services to enable the management of our customers, staff and office administration
- for financial accounting
- to share newsletters, promotional detail, industry news or other information that maybe of interest to you
- to help us improve our services
- for the administration of our website and customer interactions
- for any legal guidance in the provision of our services
- We need it to perform a public task.
- We have a legitimate interest.
Where we have partners and service providers based outside of the UK (e.g Microsoft for our IT services), your personal data may be accessed or otherwise processed in other countries. We have implemented measure and safeguards to ensure that any transfer of data is compliant with our data protection laws. For example, we ensure that Standard Contractual Clauses or International Data Transfer Agreements that are approved by the Information Commissioners Office (ICO), the UK Government and/or European Commission are in place after carrying out a detailed assessment to ensure the companies receiving your data can comply with these Clauses. Please contact us if you wish to know more.
How long we keep your data
We will only retain your data for as long as necessary to fulfil the purposes we collected it for. Once those purposes have been achieved then, unless a different purpose for processing your data arises, it will be permanently deleted.
For example, we retain details on services and products delivered for a minimum period of 6 years post the end of the transition, and in the case of warranty management and product safety, some data will be retained longer than this to ensure we can alert you to product recalls or other safety information.
Links to other websites
Our website may contain links to other website of interest. However, you should note that we do not have any control over these other websites. Once you have used any of these links to leave our site, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting these sites and such sites are not governed by this privacy statement.
Your data protection rights
Under data protection law, you have rights including:
- Your right of access – You have the right to ask us for copies of your personal information.
- Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
- Your right to erasure – You have the right to as us to erase your personal information in certain circumstances.
- Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.
- Your right to object to processing – You have the right to object to the processing of your personal information in certain circumstances.
- Your right to data portability – You have the right to ask that we transfer the personal information you gave to us to another organisation, or to you, in certain circumstances.
Please contact us if you wish to make a request.
Who to contact
Our Contact Details
Ready Made Gates
Registered Office: Unit 1, Shenstone Storage Estate, Shenstone, Staffordshire, WS14 0EA
Tel: 01543 480 023
Email: sales@readymadegates.co.uk
Company number: 10777737
ICO registration number ZA900097
Please note: If you do not have a direct trade contract with Ready Made Gates, and you do have a direct trade relationship with one of your business customers who sells our gates, then you should review their data privacy information; it is likely that they are the Data Controller and will be best place to help you.
How to complain
If you have any concerns about our use of your personal information, you can make a complaint to us using the contact details above. You can also complain to the the ICO if you are unhappy with how we have used your data.
The ICO’s address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Chesire, SK9 5AF
Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk
Document History
Date this Privacy Notice was last reviewed: June 2022