W Coleman & Son are committed to ensuring we comply to the new General Data Protection Regulation (GDPR) as a data processor.
W Coleman & Son collects the following information about you relating to deliveries and billing. This includes:
W Coleman & Son may collect this information about you in a variety of ways:
Your private data may be stored electronically on our servers that are based in the UK. Our computers are protected by password and anti-virus programs, and they can only be accessed by our staff members.
Your data will be used for delivery of goods requested by you. It may also be as correspondence data should we need to contact you. The legal basis of processing the correspondence data is the legitimate interest to perform a service, requested by you from us.
Your data will be used as transaction data and it may be used for financial records such as VAT invoices and it will be kept for 6 years. The legal basis of this processing are the “legal obligations” to which W Coleman & Son is subject.
W Coleman & Son does not share your private data with any other third party.
Once your private data is no longer relevant/needed W Coleman & Son will permanently delete the electronic files.
W Coleman & Son has standard procedures to protect your details against data breaches such as passwords for electronic files, that are periodically changed (every 3 months).
We back-up your data by creating an electronic copy of each document that is securely stored on our server based in the UK, that is protected by password and anti-virus program.
W Coleman & Son understands the legal requirement to report a data breach to ICO (Information Commissioner's Office) in a maximum 72h hours from the event. We also commit to inform every person that has been affected by the data breach.
We may update this policy in order to improve our data management.
As a data subject you have the following rights:
If you wish to exercise any of the rights above, please contact the data protection officer at email@example.com