Salvesen Graham | Privacy Policy

Introduction

This Policy applies as between Salvesen Graham Ltd of Unit 1, One Riverside, One Eastfields Avenue, London, SW18 1FQ the owner and provider of this website and any person who visits our website or whose personal data we otherwise process.

This Policy applies only to the actions of Salvesen Graham. It does not extend to any websites that can be accessed from this Website including, but not limited to, any links we may provide to social media websites.

This Policy details how we collect, use and process personal data provided to us. If you have any questions on this Policy or otherwise relating to how we process your personal data you can contact us at info@salvesengraham or at the address above.

This Policy affects your legal rights and obligations so please read it carefully. If you do not agree to be bound by this Policy, please do not provide your personal data to us.

We may update this Policy from time to time at our discretion and in particular to reflect any changes in applicable laws. If we do so, and the changes substantially affect your rights or obligations, we shall notify you if we have your email address. Otherwise, you are responsible for regularly reviewing this Policy so that you are aware of any changes to it.

For the purpose of applicable law, including the Data Protection Act 2018, the data we are the controller of your personal data is.

1. Data Collected

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

Identity Data includes first name last name and title.
Contact Data includes address, email address and telephone numbers.
Financial Data includes bank account details and payment card details.
Marketing and Communications Data includes your preferences in receiving marketing from us and your communication preferences.
Transaction Data includes details of products you have purchased, and payments made;
Technical Data includes data such as internet protocol (IP) address, your login data, browser type and version, cookies, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our website and any communications we may send to you.
Usage Data includes information about how you use our website such as information about your visit to our website, including the full Uniform Resource Locators (URL) clickstream to and through, pages you viewed or searches you made, page response times, download errors, length of visit, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.

We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as it does not directly or indirectly identity you. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we will treat the combined data as personal data which will be used in accordance with this Policy.

1.1. Personal Information

From time to time you may provide to us personal data. This may be because you wish to:

Use our website;
Purchase products from us;
Provide services to us;
Otherwise contact us including with queries, comments or complaints and/or for technical support.

We shall process all such personal data in accordance with this Policy. Certain personal data is mandatory to be provided to us in order that we can fulfil your request, for example to make a purchase of a product from us, and we shall make this clear to you at the point of collection of the personal data.

All personal data that you provide to us must be true, complete and accurate. If you provide us with inaccurate or false data, and we suspect or identify fraud, we will record this and we may also report this to the appropriate authorities.
At our request, you shall promptly provide evidence of your identity.

When you contact us by email or post, we may keep a record of the correspondence and we may also record any telephone call we have with you.

1.2. Personal Information You Provide About Third Parties – if you give us information about another person, you confirm that the other person has appointed you to act on their behalf and agreed that you:

Shall consent on their behalf to the processing of their personal data
Shall receive any data protection notices on their behalf; and
Shall consent on their behalf to the transfer of their personal data abroad

Information we automatically collect about you

When you use our website, we automatically collect and store information about your device and your activities. Some of this information is collected using cookies and similar tracking technologies. If you want to find out more about the types of cookies we use on our website, why, and how you can control them, please see our Cookies Policy.

Information we receive from others

If we reasonably believe that any of the personal data you have provided to us is inaccurate, we may receive further personal data from third parties confirming your identity. We may also receive personal data about you from our payment providers and other third party service providers.

If you talk about us on social media, including by posting a review, we may also collect your social media username and other personal data available.

In respect of data we receive from other sources, we may combine this data with data you give to us and data we collect about you. We may use this data and the combined data in accordance with this Policy.

2. How and why we use your personal data

We will only use your personal data when the law allows us to. In particular, we will use your personal data in the following circumstances:

Where you give us your consent
Where we need to perform the contract we are about to enter into or have entered into with you (including a contract to provide monitoring of publicly accessible sites which record the statements of politicians and parliamentarians in various countries and regions);
Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests; or
Where we need to comply with a legal or regulatory obligation.

We have set out below a description of all the ways we plan to use your personal data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.
Note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table below.

PURPOSE/ACTIVITY	TYPE OF DATA	LAWFUL BASIS FOR PROCESSING INCLUDING BASIS OF LEGITIMATE INTEREST
To register you as a customer	Contact Identity	Performance of a contract with you
To manage your contract with us such as the sale of products to you	Contact Identity Financial Transaction	Performance of a contract with you Necessary for our legitimate interests (fraud-checking)
To manage our relationship with you such as responding to your queries; and notifying you about changes to our terms or this Policy	Contact Identity	Performance of a contract with you Necessary to comply with a legal obligation Necessary for our legitimate interests
To administer and protect our business and this website (including improving and fixing our service, analysis, testing, system maintenance, support, reporting)	Technical	Necessary for our legitimate interests (for running our business security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise) Necessary to comply with a legal obligation
To send you marketing communications and market research purposes	Contact Identity	Consent Necessary for our legitimate interests
To deliver relevant website content and advertisements to you and measure and understand the effectiveness of the advertising we serve to you	Contact Identity Usage Marketing Technical	Necessary for our legitimate interests (to analyse how customers use our website and manage our business accordingly)
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences	Technical Usage	Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy)
To external third parties	Contact Identity Financial Transaction Technical Usage	Performance of a contract with you Necessary for our legitimate interests Necessary to comply with a legal obligation

3. Links to Other Websites

This Website may, from time to time, provide links to other websites. Salvesen Graham has no control over such websites and is in no way responsible or liable for the content thereof. This Policy does not extend to your use of such websites. Users are advised to read the privacy policy or statement of other websites prior to using them.

4. Who do we share your data with?

For our legitimate interests, we may share your personal data with our service providers, sub-contractors and agents that we may appoint to perform functions on our behalf and in accordance with our instructions, including IT service providers (including Mailchimp who send and manage our email campaigns), payment providers, accountants, auditors and lawyers.

We shall provide our service providers, sub-contractors and agents only with such of your personal data as they need to provide the service for us and if we stop using their services, we shall request that they delete your personal data or make it anonymous within their systems subject to their rights under applicable data protection legislation.

5. Security

Data security is of great importance to Salvesen Graham and to protect your Data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure data and to try to prevent unauthorised access. Unfortunately, because of the nature of electronic storage we cannot promise that your personal data will always remain secure. Although we will do our best to protect your data, we cannot guarantee the security of your data. If there is a security breach, we will do all that we can as soon as we can to stop the breach and minimise the loss of any data.

6. Where We Store Your Data

Some or all of your personal data you may be transferred to, and stored at, a destination outside the United Kingdom It may also be processed by staff operating outside the United Kingdom who work for us or for one of our suppliers. Where your personal data is transferred outside the United Kingdom Salvesen Graham will take all steps reasonably necessary to ensure that equate safe guards are in place to protect your personal data and to make sure it is treated securely.

7. How Long We Retain Your Data

Subject to the provisions of this Policy, we will retain personal data for as long as we have a vaild reason to keep it in accordance with applicable laws.

You agree that we are required to retain personal data for a particular period of time to comply with legal, auditory or statutory requirements, including requirements of HMRC in respect of financial documents.

When we no longer need to, or have a lawful right to, retain your personal data, it will be deleted or in some cases anonymized.

For users that register on our website, we also store the personal information you provide in your user profile. All users can see, edit or delete their personal at any time. Website administrators can also see and edit that information.

8. Marketing

You may consent to receive marketing email messages from us about the products and services we offer. You can choose to no longer receive marketing emails from us by contacting us or clicking unsubscribe from a marketing email. Please note that it may take us a few days to update our records to reflect your request.

If you ask us to remove you from our marketing list, we shall keep a record of your name and email address to ensure that we do not send to you marketing information.

9. Your rights

You have a number of rights under applicable data protection legislation. Some of these rights are complex, and not all of the details have been included below. Further information can be found here.

Right of access: You have the right to obtain from us a copy of the personal data that we hold for you.
Right to rectification: You can require us to correct errors in the personal data that we process for you if it is inaccurate, incomplete or out of date.
Right to portability: You can request that we transfer your personal data to another service provider.
Right to restriction of processing: In certain circumstances, you have the right to require that we restrict the processing of your personal information.
Right to be forgotten: You also have the right at any time to require that we delete the personal data that we hold for you, where it is no longer necessary for us to hold it. However, whilst we respect your right to be forgotten, we may still retain your personal data in accordance with applicable laws.
Right to stop receiving marketing information: You can ask us to stop sending you information about our products.

We reserve the right to charge an administrative fee if your request in relation to your rights is manifestly unfounded or excessive.

If you have any complaints in relation to this Policy or otherwise in relation to our processing of your personal data, please tell us. We shall review and investigate your complaint and try to get back to you within a reasonable time. You can also contact the Information Commissioner, see www.ico.org.uk or if you are based outside of the United Kingdom, please contact your local regulatory authority

12. Contact

Questions, comments and requests regarding this Policy are welcomed and should be addressed to Unit 1, One Riverside, One Eastfields Avenue, London, SW18 1FQ.