1.1 We are committed to safeguarding the privacy of our website visitors and service users.
1.2 This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data.
1.4 In this policy, “we”, “us” and “our” refer to MFW Refurbishments Ltd.
The type of personal information we collect
2.1 Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
2.2 We currently collect and process the following information:
- Personal identifiers, contacts and characteristics (for example, name and contact details)
- Account data e.g. telephone numbers, account number, device ID, IP address, service history and usage data;
- Personal data e.g. name, title, date of birth, address and circuit ID;
- Interaction history and connection data e.g. authentication logs, online alias and service performance data;
- Contact information e.g. email address;
- Social media details e.g. profile ID’s and handles;
- Professional life data e.g. job title and employer; and
- Service information e.g. speed logs.
How we get the personal information and why we have it
3. Most of the personal information we process is provided to us directly by you for one of the following reasons:
- Make informed decisions about our customers and the services;
- Perform day to day management of accounts and services;
- Record consent e.g. in relation to marketing preferences or disability or medical conditions, to make its services more accessible, to provide information in Alternative formats and to ensure marketing materials are issued in line with preferences;
- Provide, maintain and bill the services;
- Provide access to online platforms;
- Meet its legal and regulatory obligations and to comply with orders of the court or other bodies having lawful jurisdiction;
- Authenticate customers on our network;
- Identify, manage and resolve incidents;
- Issess and report on the credit-worthiness of customers or potential customers;
- Take any other action to the extent necessary to discharge an obligation pursuant to the contract; and
- Receive, manage and resolve requests, queries, complaints and claims;
Sharing Your Information
4.1 We may disclose your personal data to any member of our group of companies (this means our subsidiaries, our ultimate holding company and all its subsidiaries) insofar as reasonably necessary for the purposes, and on the legal bases, set out in this policy.
4.2 We may disclose your personal data to our insurers and/or professional advisers insofar as reasonably necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, obtaining professional advice, or the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
4.3 We may disclose your personal data to our suppliers or subcontractors insofar as reasonably necessary for providing the Services to you.
4.5 We may also share your data with third parties in the context of a sale of some or all of our business.
4.6 In addition to the specific disclosures of personal data set out in this Section 4, we may disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person. We may also disclose your personal data where such disclosure is necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
4.7 We will not share or transfer your personal data outside of the European Economic Area without your consent to do so.
Why we process your Personal Data
Under the General Data Protection Regulation (GDPR), the lawful bases we rely on for processing this information are one or more of the following:
(a) Your consent. You are able to remove your consent at any time. You can do this by contacting firstname.lastname@example.org
(b) We have a contractual obligation.
(c) We have a legal obligation.
(d) We have a vital interest.
(e) We need it to perform a public task.
(f) We have a legitimate interest (for example to fulfil a contractual obligation in our contract with you, to keep the website updated).
How we store your personal information and how long it is kept
Your information is securely stored in an encrypted form to protect against unauthorised access or processing.
We will not keep your personal data any longer than it is necessary for the purpose for which it has been processed.
Your Data Protection Rights
Under Data Protection law, you have various rights – the principal rights are summarised below. Some of the rights are complex, and not all of the details have been included in our summaries. Accordingly, you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights.
Your right of access – You have the right to ask us for copies of your personal information.
Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.
Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.
Your right to object to processing – You have the the right to object to the processing of your personal information in certain circumstances.
Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
Your right to withdraw consent – To the extent that the legal basis for our processing of your personal data is consent, you have the right to withdraw that consent at any time.
Your right to complain to a supervisory authority – If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence – for UK complaints, please refer to the ICO contact details referred to below.
You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.
Please contact us at email@example.com
Our contact details
Name: Matthew Weatherill
Title: Managing Director
Phone Number: 07850 230761
How to complain
If you have any concerns about our use of your personal information, you can make a complaint to us at firstname.lastname@example.org
You can also complain to the ICO if you are unhappy with how we have used your data.
The ICO’s address:
Information Commissioner’s Office
Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk