I have reviewed my data collection and retention policy in line with the General Data Protection Act. This page provides an overview and if you would like more details please contact me, the Data Compliance Officer (email@example.com).
If you are a customer or supplier, I will have your data stored in several other places for the purposes of invoicing, paying bills and delivering projects. This page relates specifically to the marketing data collected via this website or in person. Please contact me (the Data Compliance Officer) if you need other information.
I collect personal data from visitors to this website using online forms, email hyperlinks and the contact page. I collect your details when you email me with an enquiry. I may also have collected your details when I met you in person.
When you submit your data to me, either through the website, by email or in person, this is collected by Harvest (my CRM) and is used by me in a variety of ways, specifically:
- Providing information about products and services
- Providing and personalising my services
- Dealing with your enquiries and requests
- Administering membership of my newsletter distribution list
- Conducting market research
In all cases my aim is that it is clear what you are opting into and you will have given your consent for me to use your data.
More generally, I do not pass on my data to any third party. You can unsubscribe from the Old Gold or client mailing list at any time, either by using the unsubscribe feature on the newsletter or by emailing firstname.lastname@example.org
Where your Data is Stored?
Harvest is my client relationship management tool and collects and stores your data. In this instance, Harvest is the data processor and Chesapeake is the data controller. I also use Apple’s Contacts app to store email addresses and telephones.
Harvest is a cloud-based time-tracking, invoicing and CRM provider. More about the Harvest commitment to data protection can be found here: https://www.getharvest.com/privacy-policy
Disclosure, opt out and deletion of your data
I will not share your data with third parties unless I am obliged to disclose personal data by law, or the disclosure is necessary for purposes of national security, taxation and criminal investigation, or I have your consent.
You have the right to see the data I have collected about you. If you have any requests concerning your personal information or any queries regarding these practices, please contact me (the Data Compliance Officer) at email@example.com.
If you’d like to opt-out of receiving email or newsletter communications from me or would like to change the media that I use to contact you (e.g. changing from email to postal mail), please contact me (firstname.lastname@example.org) or call me on 07710 024 841.
My newsletter and other marketing communications also includes an unsubscribe option.
Data Retention and Deletion
From May 2018, my policy is to retain data for two years. If I have not had substantive contact with you for more than two years, then I will delete your record from my database.
If you would like to see or remove your personal data from my database, again please get in contact with me (the Data Compliance Officer) at email@example.com
Data Capture Information
I will send you information according to the preferences you submitted via my online forms. If you would like to change these preferences at any point, please email me at firstname.lastname@example.org, or call me on 07710 024 841
In addition to the above, I collect anonymous data information automatically about your visit to my website through cookies. Please see my Cookies Policy for more details. This does not fall within the remit of GDPR but is important.
If you have any concerns about my GPDR policy, you can contact me at email@example.com