1.1 This policy describes how we collect and use personal data about you, in accordance with the General Data Protection Regulations (GDPR) and the Data Protection Act 2018.
1.2. In this policy, “we”, “us” and “our” refer to Sachdevs Chartered Accountants. For more information about us, refer to SECTION
1.3. We are committed to protecting your personal information and your right to privacy.
1.4. For the purpose of the Data Protection Legislation and this notice, we are the ‘data controller’. This means that we are responsible for deciding how we hold and use personal data bout you. We are required under the Data Protection Legislation to notify you of the information contained in the privacy notice.
1.5. If you have any questions or concerns about this privacy notice, please contact us as email@example.com. 1.6. Please read the following carefully to understand our practices regarding your personal data and how we will treat it.
2. How we collect your data
2.1. We obtain personal data about you when:
(a) You OR your employer OR our clients engages us to provide our services and also during the provision of those services;
(b) you contact us by email, telephone, post, or social media (for example when you enquire about our services); or
(c) from third parties and/or publicly available resources (for example, your employer or from Companies House).
3. The kind of information we hold about you
3.1. The information we hold about you may include the following:
(a) your personal details (such as your name and /or address);
(b) details of contact we have had with you in relation to the provision, or the proposed provision, of our services;
(c) details of any services you have received for us;
(d) our correspondence and communications with you;
(e) information about and complaints and enquiries you make to us;
(f) information from research, surveys, and marketing activities;
(g) information we receive for other sources, such as publicly available information, information provided by your employer OR our clients OR information from other firms.
4. How we use your personal data
4.1. We may process your personal data for the purposes necessary for the performance of our contract with you OR your employer OR our clients and to comply with our legal obligations.
4.2. We may process your personal data for the purposes necessary for the performance of our contract with our clients. This may include processing your personal data where you are an employee, subcontractor, supplier of customer of our client.
4.3. We may process your personal data for the purposes of our legitimate interests provided that those interests do not override any of your own interests, rights and freedoms which require the protection of personal data. This includes processing for marketing, business development, statistical and management purposes.
4.4. We my process your personal data for certain additional purposes with your consent, and in these limited circumstances where your consent is required for the processing of your personal data you have the right to withdraw your consent to processing for such specific purposes.
4.5. We may use your personal data in order to:
(a) carry out our obligations arising from any agreements entered into between you OR your employer OR our clients and us (which will most likely be for the provision of our services);
(b) carry out our obligations arising from any agreements entered into between our clients and us (which will most likely be for the provision of our services) where you may be a subcontractor, supplier or customer of our client;
(c) provide you with information related to our services and our events and activities that you request from us or which we feel may interest you, provided you have consented to be contact for such purposes;
(d) seek you thoughts and options on the services we provide; and
(e) notify you about any changes to our services.
5.1. We will share your personal data with third parties where we are required by law, where it is necessary to administer the relationship between us or where we have another legitimate interest in doing so.
5.2. “Third parties” includes third-party service providers and other entities within our group. The following activities are carried out by third-party service providers: IT and cloud services, administration services, marketing services and banking services.
5.3. All of our third-party service providers are required to take commercially reasonable and appropriate security measures to protect your personal data. We only permit our third-party service providers to process your personal data for specified purposes and in accordance with our instructions.
5.4.We may share your personal data with other third parties, for example in the context of the possible sale or restructuring of the business. We may also need to share your personal data with a regulator or to otherwise comply with the law.
6. Retaining and deleting personal data
6.1. We will only retain your personal data for as long as is necessary to fulfil the purposes for which it is collected.
6.2. When assessing what retention period is appropriate for your personal data, we take into consideration:
(a) the requirements of our business and the services provided;
(b) any statutory or legal obligations;
(c) the purposes for which we originally collected the personal data;
(d) the lawful grounds on which we based our processing;
(e) the types of personal data we have collected;
(f) the amount of personal data collected; and
(g) whether the purpose of the processing could reasonably be fulfilled by other means.
7. Accessing and updating your information
7.1. Keeping your information up to date and accurate is important to us. We commit to regularly review and correct where necessary, the information that we hold about you. If any of your information changes, please email or write to us, or call us using the details in section 13.
7.2. You have the right to ask for a copy of the information Sachdevs Chartered Accountants holds about you.
(a) You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive.
8. Transferring personal data outside the European Economic Area (EEA)
8.1. We may transfer the personal data we collect about you to countries outside of the EEA.
8.2. On occasion we may use MailChimp as a means to contact you about important information. This will involve some of your personal data (name and email address) being transferred outside the EEA to the United States. MailChimp certifies to the Privacy Shield framework.
9. Security of personal data
9.1. We are committed to protecting your personal data and have appropriate technical and organisational measures in please to make sure that happens.
9.2. You acknowledge that the transmission of unencrypted (or inadequately encrypted) data over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
9.3. We have put in place procedures to deal with any suspected data security breach and you notify you and any applicable regulator of a suspected breach where we are legally required to do so.
10. Amendments to the policy
10.1. Occasionally we may update our policy, any new versions will be published on our website.
10.2. We recommend that you check this page to ensure that you are happy with any changes to this policy.
10.3. This privacy notice was last updated August 2020.
11. Your data protection rights
11.1. This section of the policy outlines the rights that you have under data protection law.
11.2. Your rights are:
(a) the right to access;
(b) the right to rectification;
(c) the right to erasure;
(d) the right to restrict processing;
(e) the right to object to processing;
(f) the right to data portability;
(g) the right to complain to a supervisory authority; and
(h) the right to withdraw consent.
11.2.1. For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.
11.3. Where we use your personal information with your consent you may withdraw that consent at any time, and we will stop using your personal information for the purpose(s) for which consent was given.
11.4. Please contact us in any of the ways set out in section 13 below if you wish to exercise any of these rights.
12. Third party links
12.1. Our website includes hyperlinks to, and details of, third party websites.
12.2. We have no control over, and we are not responsible for, the privacy policies of third parties.
12.3. We recommend that you read the privacy policies of third parties.
13. Our details
13.1. This website is owned and operated by Sachdevs Chartered Accountants.
13.2. Sachdevs Chartered Accountants is a trading name of Sachdevs (Coventry) Limited.
13.3. We are registered in England and Wales under the company number: 11595074 and our registered office address is 4 Station Avenue, Tile Hill, Coventry, CV4 9HS.
You can contact us:
(a) by post, to the above postal address;
(b) using the contact form on our ‘Contact Us’ page;
(c) by telephone, on 02476466256; or
(d) by email, using firstname.lastname@example.org
14. How to complain
14.1. You have the right to make a complaint to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues, at any time.
14.2. You can contact the ICO via:
(a) by post, to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
(b) by telephone, on 0303 123 1113; or
(c) via their website https://www.ico.org.uk
Published: August 2020