Innertec Ltd privacy statement
Introduction
InnerTec Ltd Management is committed to protecting personal data. This privacy statement describes why and how we collect and use personal data and provides information about
individuals’ rights. It applies to personal data provided to us, both by individuals themselves or by others. We may use personal data provided to us for any of the purposes described in this privacy statement or as otherwise stated at the point of collection.
Personal data is any information relating to an identified or identifiable living person. InnerTec Ltd Management’s processes personal data for numerous purposes. The means of collection, the basis of processing, use, disclosure, and retention periods for each purpose may differ.
When collecting and using personal data, our policy is to be transparent about why and how we process personal data, which we have outlined in the tabs below:
Our Clients & Business Contacts:
Collection of personal data
We collect personal data from our clients or from third parties acting on the instructions of the Management. Personal data will include name, contact title, phone, email and other business contact details. In addition, InnerTec Ltd Management may collect data from interactions such as email (sender name, recipient name, date and time) and calendar (organiser name, participant name, date and time of event) systems
Use of personal data
Personal data relating to Clients and Business Contacts may be visible to and used by InnerTec Ltd personnel and may be used for the following purposes:
- To provide services
- Administering, managing, and developing our management and services to include managing our relationship with clients
- Security, quality, and risk management activities to monitor the services provided to clients for quality purposes; personal data is held as part of our client engagement and acceptance procedures as part of those procedures we may carry out searches using publicly available sources.
- Providing our clients with information about us and our range of activities,
to provide information that we think necessary and will be of interest about the day-to-day operation of InnerTec Ltd
- Identifying clients/contacts with similar needs
- Complying with any requirement of law, regulations.
Data retention
We retain the personal data processed by us for as long as is considered necessary for the purpose for which it was collected (including as required by any applicable law; regulation or contractual requirement).
Personal data may be held for longer periods where extended retention periods are required by law or regulation and in order to establish, exercise or defend our legal rights.
Staff
We collect personal data concerning our own personnel as part of the administration, management, and promotion of our business activities.
Staff should refer to the Staff Handbook for information on why and how personal data is collected and processed.
Visitors to our Office
We have security measures in place at our offices, including CCTV and building access controls.
There are signs in our office showing that CCTV is in operation. The images captured are securely stored and only accessed on a need-to-know basis (e.g., to investigate an incident). CCTV recordings are typically automatically overwritten after a short period of time unless an issue is identified that requires investigation (such as a theft).
We require visitors to our offices to sign in at reception and keep a record of visitors. Our visitor records are securely stored and only accessible on a need-to-know basis (e.g., to investigate an incident).
Confidentiality
We take the confidentiality of all the data we hold very seriously. We have policies and procedures in place covering data protection and confidentiality.
Changes to this Privacy Statement
We recognize that transparency is an ongoing responsibility, so we will keep this privacy statement under regular review.
This privacy statement was last updated on14 May 2022.
Contact information
If you have any questions about this privacy statement or how and why we process personal data, please contact us at info@innertec.co.uk
Individuals’ rights and how to exercise them
Access to personal data
Individuals have a right to access personal data held by us. This right may be exercised by emailing us at info@innertec.co.uk. We may charge for a request for access in accordance with applicable law. We will aim to respond to any requests for information promptly and in any event within the legally required time limits (currently 40 days).
Amendment of personal data
To update personal data submitted to us, you may email us at info@innertec.co.uk. Once we are informed that any personal data processed by us is no longer accurate, we will make corrections (where appropriate and practically possible) based on your updated information.
Withdrawal of consent
Where we process personal data based on consent, individuals have a right to withdraw consent at any time. We do not generally process personal data based on consent (as we can usually rely on another legal basis such as contract). To withdraw consent to our processing of your personal data please email us at info@innertec.co.uk.
Other data subject rights
This privacy statement is intended to provide information about what personal data we collect and process. As well as rights of access and amendment referred to above, individuals may have other rights in relation to the personal data we hold, such as a right to erasure/deletion and to restrict or object to our processing of personal data. If you wish to exercise any of these rights, please send an email to info@innertec.co.uk.
Complaints
We hope that you won’t ever need to, but if you do want to complain about our use of personal data, please send an email with the details of your complaint to info@innertec.co.uk. We will investigate and respond to any complaints we receive.