Trusted Compliance Solutions Privacy Policy

Your personal data is important to both you and us, so it requires respectful and careful protection.  This privacy policy informs you of our privacy practices and of the choices you can make about the way we hold information about you.  We are committed to complying with the General Data Protection Regulation (GDPR) (2016) and good business practices.  We are both a data controller and a data processor.

This is our privacy policy, so please be aware that should you follow a link to another website, you are no longer covered by this policy.  It’s a good idea to understand the privacy policy of any website you visit before sharing personal information with it.

How we use your information

At Trusted Compliance Solutions we will only collect the minimum personal information from you.  This will be at the point you contact us, ask to be included on a newsletter, ask for further information or become a client.  This could include your name, address, telephone numbers, email addresses, signature and payment details. We need this information for legitimate, organisational purposes to provide you with the services that you have requested.  We will not use your data for any other purpose unless we have obtained your consent for that specific purpose.

We need this information to process your requests and we do not regard it as excessive.  Other relevant details that you provide in relation to the services you receive from us may be added to your data, but anything not required will be deleted immediately.  We will not ask for any irrelevant information.  We will not hold any special category personal data at any time.  If your contact details change, please advise us and we will update our records accordingly.  We do not carry out automated decision making or any type of automated profiling.  We will always process your data in a fair and lawful way in accordance with article 5 and article 6 of the GDPR.

Data Security

We have put in place security measures to prevent your personal data from being accidentally lost, used, altered, disclosed, or accessed without authorisation. Your data maybe used by the Trusted Compliance Solutions team who have a legitimate business need to know such data.   We will only process your personal data in accordance with our business processes where the safety of your data is paramount.  At no point will your personal data be passed on to any other third parties.   If we do need to share your data to a relevant third party, we will obtain your consent first.

We have procedures in place to deal with any suspected personal data breach and will notify you and any supervisory body of a breach if we are legally required to.

Please note that we do not require your consent to share this information if we suspect criminal or unlawful activity, in these circumstances we will only contact the relevant organisations.

We will not transfer your personal information outside of the Europe Union.

Retaining your data

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.  Our data retention policy considers the amount of data, its nature and sensitivity, the potential risk of harm from unauthorised use or disclosure, the processing purposes and if these can be achieved by other means and legal requirements.

For tax purposes the law requires us to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after they stop being customers.

In some circumstances we may anonymise your personal data for research or statistical purposes in which case we may use this information indefinitely without further notice to you. If you have had no communication with us for at six years, we will delete all your personal information.

If you contact us via our website, please ensure that you tick the opt in box on your enquiry form.  In order to process your enquiry, we will need your consent to have your contact details.  If you no longer wish us to process your data, please contact us at any time to let us know.

Should we need to contact you for a legitimate business reason, for example to pay you or to provide our services, your consent will not be required.

Your Rights

You have a right to see what information that we hold about you.  If you require more information, please contact our Data Protection Officer using our contact form.

Under the GDPR you have the right to request a copy of all the personal information Trusted Compliance Solutions hold about you and to have any inaccuracies corrected or information deleted.

We will send you a form to request the information you are interested in.  If you can advise of the specific information that you require, we can process your request more quickly.

Before we can provide any information, we will need to prove your identity with two forms of approved identification from the following list:

We will keep a record of how and when we verify your identity.  Any information provided will be returned or deleted immediately after verification.

We will respond to your request within one month of you providing information that confirms your identity.

When responding, we will provide a copy of your data in a format that you can access easily.  We will detail, why we have the data, who it could be disclosed to and the categories of data it involves.

You have the right to clarify and correct the information as necessary.  It can be deleted, providing that it is not required for legal or public interest reasons.  If your request is more complex, for example it involves other data subjects from whom we need consent to release information, we can extend our response time to three months.  We will inform you if this is the case.

If third party data subjects do not provide their consent, we will anonymise this data or remove the relevant detail before sending this to you.

We will not charge for data subject access requests unless they are excessive or manifestly unfounded.  Then we will charge for administrative time only.

If you are not satisfied with our response, please get in touch and we will do our best to help you.

Cookies

Our website uses cookies but all data is anonymised and you cannot be identified.  Please see our cookie policy for more information.

On Line Activity

We use WordPress and Google Analytics services, which are hosted within the European Union.  All data that is captured is anonymised and you cannot be identified.

If you wish to make a comment on our website, you may be asked for your email address so that we can respond to you. Please ensure that you tick the opt in box if you would like us to respond to you.

Concerns

If you have any concerns about your data then please please get in touch and we will do our best to help you.

If you have any concerns about how your data is being used or processed and we have not been able to help you, then you can contact the European  Information Commissioner’s Office (ICO).  Ways to report concerns are detailed on their website.

If you have any questions, comments or suggestions for how we can improve our services, please get in touch.