Digitalised Finance Limited is committed to respecting and protecting your privacy. The purpose of this policy is to outline how the company has established measures to protect your privacy and information rights.
We recognise that you have rights as a ‘data subject’, and that we have an obligation to uphold these.
This privacy notice aims to outline how we maintain these rights. In particular, it outlines:
• How we collect and process your information
• Why we do this
• How you can exercise your rights;
• Who to contact in the event you’re unhappy with our performance.
Right to be informed
This encompasses the obligation for us to be transparent in how we collect and use your personal data.
Right of access
You have the right to access your personal data and supplementary information.
Right to rectification
If the information we hold on you is inaccurate or incomplete, you can request we correct this.
Right to erasure
You can request we delete or remove personal data where there is no compelling reason for us to continue processing
Right to restrict processing
You have the right to request we cease processing your data, if:
• You consider it inaccurate or incomplete;
• Where you object to processing and we are considering
• Whether we still have a legitimate interest to process it.
• Where we don’t need the data for the original reason we collected it, but may need it to support a legal claim
Right to data portability
Where you have consented to our processing your data, or where the processing is necessary for us to deliver a contract, you can request a copy of that data be provided to a third party in electronic form.
Right to object
You have the right to object to our processing under certain circumstances. For example, you can object to direct marketing (including profiling); and processing for purposes of scientific/historical research and statistics.
Rights relating to automated decision making including profiling
Where we apply automated decision making, we must
• give you information about the processing;
• introduce simple ways for you to request human intervention or challenge a decision;
• carry out regular checks to make sure that our systems are working as intended
Information related to automated decision making is contained later in this notice.
Information we collect
We will prior to commencing a relationship with you and periodically thereafter collect personal information about you such as your Name, Telephone Number, Email Address and Company Name required to provide services to you.
Why we collect this
The lawful basis for processing such information about you is:
• That the company has a legal obligation to do so and processing is necessary for the company to be able to offer you the required services
How we process this
We will keep this documentation either in hard copy or electronically throughout your relationship with Digitalised Finance Limited.
Transfer of data
Digitalised Finance Limited may outsource certain services to third parties. The company will only use reputable third parties to perform such services. We will require such service providers to comply with the relevant laws and regulations to ensure that your data is safe and handled securely.
Retention of data
We hold information we collect from you to maintain a relationship. Once your relationship with Digitalised Finance Limited ceases we will retain such information/data for five years or longer if required, thereafter your data will be deleted from our systems/files.
Automated decision making
The company currently does not exercise automated decision making or profiling.
Securing your information
Digitalised Finance Limited maintains strict security systems designed to prevent unauthorised access to your information by anyone, including its staff. All staff with permitted access to your information are specifically required to observe Digitalised Finance Ltd’s confidentiality obligations.
The company has a range of Information Security controls (both technical and procedural) to ensure your data is secure and to support its commitment to GDPR, these include:
• Access control
• Physical Security
• Information and System Segregation
• System Resilience
• Change Management controls
• 24/7 Monitoring and Incident Response
• Staff Security Awareness
• Security by Design
• Data Discovery, Extraction and Destruction capabilities
If you have any questions in respect of this policy, or would like to exercise your rights as a data subject (for example, to correct data or to exercise your right to access) please contact Digitalised Finance Limited, as data controller at email@example.com
If you are not satisfied that we have responded to your query adequately, or if you have a complaint, the Information Commissioner’s Office can be contacted as follows
Information Commissioner’s Office
Water Lane, Wilmslow
Cheshire, SK9 5AF
Telephone: +44 (0)303 123 1113 or 01625 545745