PRIVACY POLICY/NOTICE FOR REDINET
This policy was last updated on 30/06/2021.
In summary
Redinet Ltd (‘Redinet’, ‘we’, ‘us’, and ‘our’) take data protection very seriously and we are committed to protecting your personal information.
We have appointed a Data Protection Officer (DPO). Our DPO can be contacted at gdpr@redinet.co.uk
This explains what information gather about you, what we use that information for, and who we give that information to. It also sets out your rights in relation to your information, how long we keep it and who you can contact for more information. Click on the links to take you to the sections.
It is our policy to collect only the minimum information required from you. If you believe we have collected excessive information about you, please contact us to raise any concerns you may have.
Although you do not have to provide any of your personal information to us, if we ask you to do so and you refuse, we may be unable to provide you with the information or services you want from us or fulfil our contractual obligations to you.
What is personal information?
Personal information is anything that enables you to be identified or identifiable, such as your:
• First and last names
• Postal, email and IP addresses
• Telephone numbers
• Identity documents (e.g., passports & driving licence)
• Identity numbers (e.g., National Insurance and Bank accounts)
• Career & educational documents (e.g., CVs & qualifications)
• Contact information
Your personal information is sometimes called “personal data”. We collectively refer to handling, collecting, protecting, or storing your personal information as ‘processing’.
Collecting your personal information
Below are just some examples of how you may provide personal information to us:
• Asking us to provide services to you or someone else.
• Contacting us
• Searching and browsing our website
• Subscribing (‘signing up’) to our newsletters
• Registering for or attending our events
• Submitting CVs or work history information to us
• Providing us with business cards or other contact information
• In the course of your employment with us
Personal Information we receive from other sources.
We will usually combine this information with information you give to us and information we collect about you. We will usually use this information and the combined information for the purposes set out above (depending on the types of information we receive).
We do not collect personal information from public records and other similar sources.
Using your personal information
When you provide your personal information to us, we may use it for any of the purposes described below or as stated at the point we collect it from you (or as may be obvious to you from the context of collection), including:
1. To provide services to you that you have requested.
2. To develop our businesses and services
3. To consider whether to offer someone employment with us.
4. To administer and manage our website.
5. Any other purposes for which personal information has been provided to us, including any of the purposes given in the ‘Collecting your personal information’ section above.
We do not collect personal information for sale to third parties.
Legal grounds for processing your personal information.
We rely on one or more of the following processing conditions:
• To perform our contractual obligations to you; and/or
• To satisfy any legal and regulatory obligations to which we are subject; and/or
• To satisfy our legitimate interests in the effective delivery of information and services to you and in the effective and lawful operation of our businesses (where this does not interfere with your rights); and/or
• When you have agreed (consented) to us processing your personal information.
Security of your personal information
We have implemented generally accepted standards of technology and operational security in order to protect personally identifiable information from loss, misuse, alteration, or destruction.
We shall ensure that your personal information is stored securely using best practice and in an environment that is maintained in accordance with our ISO 27001 certification.
Only authorised persons are provided access to personally identifiable information we have collected, and such individuals have agreed to maintain the confidentiality of this information.
Although we use appropriate security measures once we have received your personal information, the transmission of data over the internet (including by e-mail) is never completely secure.
We endeavour to protect personal information, but we cannot guarantee the security of data transmitted to or by us.
Sharing your personal information
We may transfer, share, or disclose the personal information we collect from you to third parties (other organisations or individuals) for:
• The purposes for which the information has been submitted.
• The purposes listed above under ‘Use of your personal information’.
These third-party providers may use their own third-party subcontractors that have access to personal information (sub-processors). It is our policy to use only third-party providers that are bound to maintain appropriate levels of security and confidentiality, to process your personal information only as instructed by us, and to flow those same obligations down to their sub-processors.
We may also disclose your personal information to third parties:
• When explicitly requested by you
• When required to deliver services requested by you
We may also disclose your personal information to law enforcement, regulatory and other government agencies and to professional bodies and other third parties, as required by and/or in accordance with applicable law or regulation.
International transfers of your personal information
Your personal information may be transferred outside the UK and the European Economic Area (EEA)].
Any transfer to outside the UK and EEA will be only:
• To you (i.e., if you are located outside those areas)
• To a recipient located in a country which provides an adequate level of protection for your personal information; or
• Under a contractual agreement which satisfies UK or EU requirements for the transfer of personal data outside the UK and EEA, respectively.
Retention of your personal information
We will retain your personal information only for as long as we need it, given the purposes for which it was collected, or as required to do so by law.
Normally, this means we will retain your personal information for six years. For more information, please contact us for a copy of our retention policy.
Marketing
Where we are legally required to obtain your consent to provide you with marketing materials, we will only provide you with such marketing materials if you have provided your prior consent for us to do so.
If you subscribe to our newsletter, you will receive these by email. If you want to unsubscribe from this, you can do so at any time by using the ‘unsubscribe’ option in the newsletter, or by contacting us (see below),
If you choose to unsubscribe from our newsletter, we may retain information sufficient to identify you so that we can honour your request.
Rights in relation to your information
You have certain rights in relation to the personal information we hold about you. In particular, you have the right to:
• Request a copy of personal information we hold about you.
• Ask that we update the personal information we hold about you or correct such personal information that you think is incorrect or incomplete.
• Ask that we delete personal information that we hold about you or restrict the way in which we use such personal information.
• Object to our processing of your personal information; and/or
• Withdraw your consent to our processing of your personal information (to the extent such processing is based on consent and consent is the only permissible basis for processing).
If you would like to exercise these rights, please contact us.
Automated decision making
We will not use your personal information for automated decision making or profiling.
Cookies
Please see our Cookies Policy
Our and third-party websites
Our website may, from time to time, contain links to and from the websites of third parties. If you follow a link from our website to another website, please note that:
• this privacy notice/policy will not apply and
• the other websites will have their own privacy notices/policies and
• we are not responsible for those notices/policies.
We recommended that you take some time to read those policies before you submit any personal data to these websites.
Contact us
If you have any questions or complaints about the way your personal information is processed by us, or would like to exercise one of your rights set out above, please contact us by one of the following means:
Online: https://www.redinet.co.uk/contact-us/.
Email: gdpr@redinet.co.uk
Telephone: 020 8249 7000
Post: Ashcombe House, 5 The Crescent, Leatherhead, Surrey, United Kingdom, KT22 8DY
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO). The ICO can be contacted by the following means:
Online: https://ico.org.uk/global/contact-us/.
Telephone: 0303 123 1113.
Post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire
SK9 5AF
We may update this Privacy notice at any time by publishing an updated version here. So that you know when we make changes to this Privacy statement, we will amend the revision date at the top of this page. The new modified or amended Privacy notice will apply from that revision date. Therefore, we encourage you to review this Privacy notice periodically to be informed about how we process your personal information.