Privacy policy

In compliance with the General Data Protection Regulation (GDPR) 2018, this privacy policy has been compiled to explain how ‘Personally Identifiable Information’ (PII) is used. PII, is described in UK privacy law and information security, as information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.

Your Personal Information/Data

We collect information when we communicate with you regarding potential work or when we enter into a contract with you. We collect, handle and retain your personal data, such as name, email address, residential addresses or phone numbers, as well as financial information such as bank details. Depending upon the services provided by IT Kept Simple other PII may also be stored such as IP Addresses, if we provide you with Broadband, Domain Registration, if we provide you with a domain name. for a full list of PII store about you, please don’t hesitate to contact us.

We will respond to requests for information regarding the data we hold on you within twenty-eight days.

We only use your data/information if we have an appropriate and legitimate reason, such as:
• To fulfil a contract, we have with you; or
• When it is in our legitimate interest; or
• When you consent to it; or
• To comply with the law.

Data Breaches

Every care is taken to protect data, and to minimise the likelihood of data breaches whether accidental or deliberate. Appropriate security is in place, for example, hardware and software is password and firewall protected, and passwords are only accessible by specific people in relation to the business. If a data breach is likely to be a risk to people’s rights and freedoms, we will inform the ICO within 72 hours, and inform affected individuals without undue delay. All breaches are documented.

Keeping your data safe

Your personal information is contained behind secured networks and is only accessible by a limited number of people who have specific access rights to such systems and are required to keep the information confidential.

We do not sell, trade, or otherwise transfer information to outside parties unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may transfer data to third party credit reference companies and credit facility/leasing companies in order to provide you with a credit facility.

We may also release information when it is appropriate, for example, to comply with the law, enforce our policies, or protect ours or others’ rights, property or safety.

We hold your data on servers in the UK. We take all reasonable precautions to ensure that your personal data remains secure. We have adequate procedures to avoid data security breaches and to protect your data from accidental or unlawful disclosure, damage, destruction or loss.

Your Rights

GDPR is about protecting individuals and their rights in respect of their personal information. It is designed to ensure that an individual can maintain control over their information. Under GDPR you can:

• Request access to, deletion of, or correction of your personal data
• Request your personal data be transferred to another person
• Complain to a supervisory body (In the UK this is the ICO: the Information Commissioner’s Office).

If you choose to withdraw your consent, which you are able to do so at any time, we can only continue to use your data if another legal basis allows this. This could be, for example, when we are required to do so by law.

Please do not hesitate to contact us, should you have any questions regarding our policies/procedures regarding data, information or GDPR.

Please email, support@itkeptsimple.co.uk