Overview

This privacy policy sets out how we, SME Comply, uses and protects any personal data that you provide when you use our website or services.

SME Comply is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.

SME Comply may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes.

 

Our details

SME Comply's registered address is De Montfort House, 73 Enterprise Way, Evesham, WR11 1GS.

Our data protection lead is Gary O'Reilly.

 

Information we may collect from you

Typically this information could be collected during the registration or purchase process, or through you contacting us with enquiries or comments and Google Analytics cookies (please see the cookies section below).

The personal data we may collect and process about you could include:

  • Your name, address, email address and other contact information;
  • Your payment information;
  • Information you have entered into documents;
  • Records of your correspondence with us, if you have contacted us; and
  • Details of your visit to the website.

 

Where we store your personal data

Other than as stated below, we do not hold or use any information that you provide, or which we collect, outside the European Economic Area (“EEA”), nor do we transfer it to, or share it with, others within or outside the EEA (except when we believe in good faith that the law requires it).

 

Uses made of the information

We will process any of your personal data, in accordance with our obligations under applicable data protection laws and regulations, for the following reasons: to provide you with the documents and services you have requested; to comply with applicable laws and regulations and for administrative purposes.

 

Disclosure of your information

We will not sell, distribute or lease your personal information to third parties unless we have your permission. We may disclose your personal information to third parties if under a duty to do so, for example to comply with any legal obligation, to enforce any agreements or to protect the rights, property, or safety of SME Comply employees, or others. This includes exchanging information with other companies and organisations for the purposes of anti-money laundering legislation and credit risk reduction.

 

Retention

We will not retain your personal data indefinately, and in most cases we will delete your personal data for a period of one year from date of registration with our website. If we intend or need to keep your personal data for longer, we will contact you to explain the reason for retaining your personal data longer.

 

Security

We will use appropriate technical and organisational measures to keep personal information secure, and in particular to protect against unauthorised or unlawful processing and against accidental loss, destruction or damage. We have in place a process for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring the security of the processing.

 

Your rights

You may have certain rights in relation to the personal information we hold about you.   These rights may include:

1. Right to be informed – you have a right to be told how we use your personal data. We will communicate the right to be informed via this privacy policy.

2. Right of access – you have the right to request a copy of the information that we hold about you. (This right is similar to a subject access request).

3. Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.

4. Right to erasure (right to be forgotten) – in certain circumstances you can ask for the data we hold about you to be erased from our records.

5. Right to restrict processing – where certain conditions apply to have a right to restrict the processing.

6. Right of data portability – you have the right to have the data we hold about you transferred to another organisation.

7. Right to object – you have the right to object to certain types of processing such as direct marketing, the performance of a legal task and scientific or historical research.

8. Right to object to automated processing, including profiling.

You also have the right to withdraw consent if the legal basis for our processing of your personal information is consent.

 

How to exercise your rights

You may exercise any of your rights in relation to your personal data by writing to us at the address above. To avoid delay in dealing with your request please ensure that you confirm in your request which right you wish to exercise along with the reasons why.

The first copy will be provided free of charge, but additional copies may be subject to a reasonable fee.

We will respond to your request within 30 days, by either providing you with the information requested, requesting further information from you, or requesting further time to complete your request, if for example the request is substantial.

We can also refuse your request.  In the event that we refuse your request we will provide you with reasons why, as well as provide you with details of how you can challenge or appeal our decision.  You will also be informed of your right to legally challenge our decision with the ICO.

 

IP Addresses

We may collect information about your computer, including your IP address, operating system and browser type, for system administration. This is statistical data about our users' browsing actions and patterns, and does not contain information from which an individual can be identified.

 

Cookies

The SME Comply websites use cookies to record visits to the websites.

A cookie is a small file which asks permission to be placed on your computer's hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system. An individual cannot be identified from a cookie.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

 

Contact

Any questions or comments regarding this privacy policy should be sent by email to info@smecomply.co.uk.