We respect your privacy and your rights for data protection and privacy. Please read this privacy statement carefully to understand who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us and supervisory authorities in the event that you have a complaint.
2. Who we are
Edenhouse Solutions Limited (‘we’, ‘us’) collect, use and is responsible for certain personal information about you. When we do so we are regulated under the data protection and privacy laws which apply across the European Union (including those in the United Kingdom), and we are responsible as a ‘Controller’ of that personal information for the purposes of those laws
3. Types of Personal Information We Collect
Information collected by us:
We collect, store and use the following personal information when you provide it to us:
Information collected from other sources:
Occasionally we receive personal information from third party sources, which vary from time to time, but generally include:
4. How We Use Your Personal Information
We use your personal information to:
5. Who We Share Your Personal Information With
We do not and will not sell personal information about our customers. We may share information with the following types of third parties, or in the following circumstances:
When sharing data with third parties, your personal information may be transferred outside of the European Economic Area — for further information including on how we safeguard your personal data when this occurs, see ‘Transfer of your information out of the EEA’.
We will not share your personal information with any other third party without your consent.
6. Whether Information Must Be Provided By You
In some instances it will be necessary for you to provide Name and Contact Data and Credentials to enable us to provide products and services to you. The use of such data also assists us to ensure the secure and effective management of the supply of such products and services.
We will inform you at the point of collecting information from you, whether you are required to provide the information to us, and any impact this may have on our ability to deliver products/services if you decline.
7. How Long Your Personal Information Will Be Kept
We hold your personal information for as long as is necessary to provide the products and services offered and/or supplied to you, or for other legal purposes such as complying with the law and our legal obligations, resolving disputes and enforcing our agreements. All personal information we retain will be subject to this privacy statement and our internal retention guidelines. If you have any questions about a specific retention period for specific types of personal information we process, please contact the Privacy Team (see ‘How to Contact Us’ below).
8. Legal Bases For Using Your Personal Information
8.1 Performance of a Contract
We may use your personal data where necessary for the performance of a contract we have with you or to take steps to enter into a contract.
8.2 Compliance with the Law
Processing may be necessary for our compliance with any relevant legal, regulatory and corporate governance obligations. By way of example only, certain products, technologies and services are subject to export laws in various contracts, and you acknowledge that we may be required to take measures to prevent entities, organisations and parties listed on government–issued sanctioned party lists from accessing such products, technologies and services. This may include checks on user registrations data, or contacting a user to confirm his or her identity.
8.3 Legitimate Interests
We may also use your personal data for our legitimate business interests, for example recording transactions, quality improvement purposes, improving the content on our website and for other administrative, fraud detection and legal purposes. In order to network or grow our business we may also use your information to keep you up-to-date in relation to our products and services (including webinars, seminars or events) which are similar or relate to any products and services you have already purchased from us.
You have a right to object to us processing your personal data for our legitimate interests, and you may exercise this right by emailing email@example.com. Upon receipt of such a request, we will stop processing any applicable personal data unless we are permitted to process such data for another purpose set out in this privacy statement, or we are able to demonstrate a compelling legitimate interest to continue processing.
Except where we have a legitimate interest to do so, we will only use your personal data for direct marketing purposes if you have granted us consent. You may withdraw your consent in this case any time by emailing firstname.lastname@example.org; alternatively you can unsubscribe from any direct marketing by following the instructions in each email we send to you.
8.5 In the event that we are required to retain your personal data for legal reasons, we shall retain your personal data for period required by law.
9. Cookies other Tracking Technologies
For example, we may monitor how many times you visit the website, which pages you go to, traffic data, location data and the originating domain name of a user’s internet service provider. This information helps us to build a profile of our users. Some of this data will be aggregated or statistical, which means that we will not be able to identify you individually.
You can set your browser not to accept cookies and the websites below tell you how to remove cookies from your browser. However, some of our website features may not function as a result.
10. Transfer of Your Information Out of the EEA
As a Controller we process personal data in the European Economic Area. However, we may transfer your personal information to sub-processors, who may process data within as well as outside of the EEA. As a consequence, whenever such transfers occur your personal data may be transferred to countries outside of the EEA. In such cases we have adequate mechanisms in place to protect personal information, for example by the use of Standard Contractual Clauses as approved by the European Commissions. If you would like further information please contact the Privacy Team (see ‘How to Contact Us’ below).
11. Your Rights
We rely on you to ensure that your personal information is complete, accurate and up to date. In the circumstances, we would ask you to notify us promptly of any changes or inaccuracies in your personal information.
In any event, you have a number of important rights in relation to our use of your personal information. In summary, such rights include the right to:
For further information on each of those rights, including the circumstances in which they apply, you may wish to read the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation.
If you would like to exercise any of these rights, please contact us at email@example.com and let us have:
Please note that regardless of your communication settings we will continue to communicate with you in the ordinary course of business for the purposes of performing our contractual or legal obligations.
12. Keeping Your Personal Information Secure
We are committed to protecting the security of personal information. We maintain appropriate security measures to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. Our ISO 27001 certification also ensures the ongoing confidentiality, integrity, availability and resilience of our processing systems.
We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. Whilst we will use all reasonable efforts to safeguard your personal data, you acknowledge that the use of the internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal data that are transferred from you or to you via the internet.
We also have procedures in place to deal with any suspected data security breaches. We will notify you, the applicable supervisory authority and any applicable regulator of any suspected data security breach where we are legally required to do so.
13. Links to Other Websites
Our website(s) may contain links to third party (meaning websites which are not owned by us). We are not responsible for the privacy practices or the content of such third party websites. If you provide personal data to such third parties, your data will be governed by their privacy statements.
14. How To Complain
We hope that we can resolve any query or concern you raise about our use of your information. However, you also have a right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner, who may be contacted at https://ico.org.uk/concerns/.
15. Changes To This Privacy Statement
This privacy statement was published on 18 May 2018.
We may change this privacy statement from time to time. If there are material changes to this statement, or in how we use your personal information we will inform you by either posting a notice of such changes prior to them taking place, or by directly sending you a notification. We would encourage you to regularly review this statement.
16. Children’s Personal Information
Our website and services are intended for adults only. Our services are not directed to minors and we do not knowingly collect personal information from minors.
17. How To Contact Us
You can contact the Privacy Team if you have any questions about this privacy statement or the information we hold about you by:
Post: Privacy Team, Edenhouse Solutions Limited, 6 Quartz Point, Stonebridge Road, Coleshill, B46 3JL; or
Phone: +44 (0) 121 767 9280.