The New EU General Data Protection Regulation  (GDPR) comes into force on 25th May 2018 and will impact every organisation that holds or processes personal data. Kitchener 2000 is committed to high standards regarding internet security and privacy. We have a high priority of managing and protecting data in accordance to accepted standards. Our company will comply with applicable GPPR regulations.

Who we are

Kitchener 2000 Ltd are a Portable Appliance Testing Company, based in Blackburn. Registered in England, Number 4604412. Our website address is: https://www.kitchener2000.co.uk.

What personal data we collect and why we collect it

Clients

Kitchener 2000 collects a minute amount of personal data, this includes, a contact name, a contact number (this could be either a personal or work number), the sites address and an email address (again, this is mostly work emails, with the exception of a few personal emails).

Marketing

Kitchener 2000 collects and stores this information onto our database of current clients. This is solely to be able to contact them again when their testing is due for renewal or for our engineers to contact them with information/questions about the testing, or to inform them of their arrival.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Enquiries/Contact Forms

When contacting Kitchener 2000 through our website you are required to enter contact details. Once the enquiry has been dealt with and we no longer require your data, it is deleted from our system. We do not use the information submitted through the forms for marketing purposes.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Kitchener 2000 use cookies where appropriate on our website to gather information about your computer and use of our website in order for us to continuously improve our website. Cookies may also gather information about your general internet use – cookies are downloaded and stored onto your computer’s hard drive. This is not personal data – only statistical. Adjusting the cookies settings can be easily achieved by going into your settings and clearing the cookies. If you have any queries about the use of cookies, we have a link to find out more on our website.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

How your information will be used

As previously stated, the personal information stored will mainly be used as a mean of contacting you regarding your testing.  We will contact you a month prior your testing is due for renewal, the month that it is due via post. If you haven’t contacted to book in your testing then an overdue letter will also be sent out via post. In certain circumstances, we will contact you via email or the phone to book in your testing.

Kitchener 2000 sends out e-newsletters. We have cleansed this database in order to comply with the GDPR. You will now receive our newsletters only if you have recently opted in. This can be done through receiving a link from Kitchener 2000 personally, or through our website.

The information stored on this database includes; Full Name, Email Address, Company Name, Company Address. Our e-newsletters are sent out to keep you updated with what’s going on at Kitchener 2000.

The information stored on this database is purely for this reason only.

Who we share your data with

Kitchener 2000 will never disclose information to any third parties, without your expressed permission, unless we are required to do so by law.

How long we retain your data

We hold records of our clients/past clients PAT Testing results and digital records of clients/past clients for 7 years. If you no longer wish to use our services and you request that you would like the data deleted from our system then this will be completed with immediate effect. If you no longer work for a company who uses our services and you were previously the main contact, Kitchener 2000 can assure you that your details will be removed from our system immediately, and updated with the current contacts details.

Regarding the database for our newsletters, your information will continue to be stored unless you opt-out or update your preferences to limit what information you allow us to store. Opting out or updating your preferences will be made easily accessible.

If you leave a comment on our website, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information. This information will never be used for marketing purposes.

Our Legal Basis on processing data collected

“The lawful bases for processing are set out in Article 6 of the GDPR. At least one of these must apply whenever you process personal data.

  • Consent: the individual has given clear consent for you to process their personal data for a specific purpose.
  • Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.
  • Legal Obligation: the processing is necessary for you to comply with the law (not including contractual obligations).
  • Vital Interests: the processing is necessary to protect someone’s life.
  • Public Task: the processing is necessary for you to perform a task in the public interest or for your official functions, and the task or function has a clear basis in law.
  • Legitimate Interests: the processing is necessary for your legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests. (This cannot apply if you are a public authority processing data to perform your official tasks.)” *

Kitchener 2000’s legal basis for processing data collected is through consent and contract. By being an existing client of Kitchener 2000, this acts as a confirmation and understanding that we store and process contact details, and on the off occasion these will be personal phone numbers or emails, depending on the situation.

What rights you have over your data

As a data subject, your rights are as follows:

  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to erasure
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • The right not to be subject to automated decision making including profiling.

Kitchener 2000 can assure you that your rights to your data will be met. If you ever wish to remove your data, edit it, or learn more about what data is stored, then please contact Kitchener 2000 via victoria@kitchener2000.co.uk and this will be rectified immediately. Alternatively you can contact us via 01254 580966, or by post, to:

Kitchener 2000 Ltd
Capricorn House
Capricorn Park
Blakewater Road
Blackburn
Lancashire
BB1 5QR

If you wish to unsubscribe from our newsletters, this can be achieved by clicking the link at the bottom of each newsletter, or by emailing victoria@kitchener2000.co.uk

Kitchener 2000 will always ensure that we comply with the GDPR and that your rights are always met.

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

How you can raise a complaint

If you wish you raise a complaint, then please contact Kitchener 2000 via phone, email, or post and we will rectify this immediately.

You also have the right to make a complaint to the Information Commissioners’ Office (ICO) if you believe that we have not complied with the requirements of the GDPR in regards to your personal data.

 

* ~  https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/lawful-basis-for-processing/#ib3

This policy was last updated on 24th May 2018