Website privacy notice
1. INTRODUCTION This privacy notice provides you with details of how we collect and process your personal data through your use of our site www.paineaccountants.co.uk, including any information you may provide through our site when you purchase a product or service, sign up to our newsletter or take part in a prize draw or competition. By providing us with your data, you warrant to us that you are over 13 years of age. Paine Accountants is the data controller and we are responsible for your personal data (referred to as “we”, “us” or “our” in this privacy notice). We have appointed a Data Protection Officer who is in charge of privacy related matters for us. If you have any questions about this privacy notice, please contact the Data Protection Officer using the details set out below.
Contact Details Our full details are: Full name of legal entity: Paine Accountants Name or title of Data Protection Officer Gareth Paine Email address: ku.oc.stnatnuoccaeniap%40ofni
Postal address: The companies business address
If you are not happy with any aspect of how we collect and use your data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We should be grateful if you would contact us first if you do have a complaint so that we can try to resolve it for you. It is very important that the information we hold about you is accurate and up to date. Please let us know if at any time your personal information changes by emailing us at: moc.xataitra%40yaja 2. WHAT DATA DO WE COLLECT ABOUT YOU Personal data means any information capable of identifying an individual. It does not include anonymised data. We may process certain types of personal data about you as follows: • Identity Data may include your first name, maiden name, last name, username, marital status, title, date of birth and gender.• Contact Data may include your billing address, delivery address, email address and telephone numbers.• Financial Data may include your bank account and payment card details.• Transaction Data may include details about payments between us and other details of purchases made by you.• Technical Data may include your login data, internet protocol addresses, browser type and version, browser plug-in types and versions, time zone setting and location, operating system and platform and other technology on the devices you use to access this site.• Profile Data may include your username and password, purchases or orders, your interests, preferences, feedback and survey responses.• Usage Data may include information about how you use our website, products and services.• Marketing and Communications Data may include your preferences in receiving marketing communications from us and our third parties and your communication preferences.We may also process Aggregated Data from your personal data but this data does not reveal your identity and as such in itself is not personal data. An example of this is where we review your Usage Data to work out the percentage of website users using a specific feature of our site. If we link the Aggregated Data with your personal data so that you can be identified from it, then it is treated as personal data.
Sensitive Data We do not collect any Sensitive Data about you. Sensitive data refers to data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data. We do not collect any information about criminal convictions and offences.
• advertising networks such as Facebook/ Instagram/ based outside the EU; and
• search information providers such as Google and Bing based outside the EU.
4. HOW WE USE YOUR PERSONAL DATA We will only use your personal data when legally permitted. The most common uses of your personal data are: • Where we need to perform the contract between us.• Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.• Where we need to comply with a legal or regulatory obligation. Generally, we do not rely on consent as a legal ground for processing your personal data, other than in relation to sending marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by emailing us at .moc.xataitra%40yaja Purposes for processing your personal data Set out below is a description of the ways we intend to use your personal data and the legal grounds on which we will process such data. We have also explained what our legitimate interests are where relevant. We may process your personal data for more than one lawful ground, depending on the specific purpose for which we are using your data. Please email us at moc.xataitra%40yaja if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table below. Purpose/Activity Type of data Lawful basis for processing
To register you as a new customer (a) Identity (b) Contact
Performance of a contract with you
To process and deliver your order including:(a) Manage payments, fees and charges(b) Collect and recover money owed to us (a) Identity(b) Contact(c) Financial(d) Transaction(e) Marketing and Communications(a) Performance of a contract with you(b) Necessary for our legitimate interests to recover debts owed to us
To enable you to partake in a prize draw, competition or complete a survey(a) Identity(b) Contact(c) Profile(d) Usage(e) Marketing and Communications(a) Performance of a contract with you(b) Necessary for our legitimate interests to study how customers use our products/services, to develop them and grow our business
To administer and protect our business and our site (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)(a) Identity(b) Contact(c) Technical(a) Necessary for our legitimate interests for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise(b) Necessary to comply with a legal obligation
To deliver relevant content and advertisements to you and measure and understand the effectiveness of our advertising (a) Identity(b) Contact(c) Profile(d) Usage(e) Marketing and Communications(f) Technical Necessary for our legitimate interests to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences(a) Technical(b) Usage Necessary for our legitimate interests to define types of customers for our products and services, to keep our site updated and relevant, to develop our business and to inform our marketing strategy
To make suggestions and recommendations to you about goods or services that may be of interest to you(a) Identity(b) Contact(c) Technical(d) Usage(e) Profile Necessary for our legitimate interests to develop our products/services and grow our business
Marketing communications You will receive marketing communications from us if you have:
(i) requested information from us or purchased goods or services from us; or (ii) if you provided us with your details when you entered a competition or registered for a promotion or free resources; and(iii) in each case, you have not opted out of receiving that marketing.