As a company, Bradfor Ltd has always taken privacy seriously. We are committed to ensuring that any data which we collect is secure. As a result of a change in European Law on 25th May 2018 (the General Data Protection Regulation) we are now required to explain fully how we collect and use data. Whilst the way we collect and use this data hasn’t changed this privacy notice explains what information we collect about our customers and suppliers, how we may use it, and the steps we take to ensure that it is kept secure. We also explain your rights and how to contact us.
We may update this Privacy Notice from time to time. Any changes will be published on our website www.Bradfor.co.uk. This Privacy Notice has been drawn up in line with the Information Commissioner’s Office (ICO) Privacy Notices Code of Practice. We hope that you’ll find it straightforward, but if you have any questions or concerns about this Privacy Notice, please feel free to contact our Customer Services team by emailing: firstname.lastname@example.org
As a Customer or Supplier of Bradfor Ltd we will;
- only process data provided in relation to the reasons that we find proper and necessary for the course of our relationship.
- Ensure it is correct and up to date
- Only keep your data for as long as we need it
- Process it in a way that ensures that it will not be used for anything that you are not aware of and against loss or destruction.
We will also take the appropriate measures to;
- ensure that people processing the data are subject to a duty of confidence;
- take appropriate measures to ensure the security of processing;
- only engage sub-processors with the prior consent of the controller
- assist the controller in providing subject access and allowing data subjects to exercise their rights under the GDPR;
- assist the controller in meeting its GDPR obligations in relation to the security of processing, the notification of personal data breaches and data protection impact assessments;
- delete or return all personal data to the controller as requested at the end of the relationship; and
- submit to audits and inspections, provide the controller with whatever information it needs to ensure that they are both meeting their Article 28 obligations, and tell the controller immediately if it is asked to do something infringing the GDPR or other data protection law of the EU or a member state
What data do we hold?
We only hold data that has been provided by you to perform the contract/relationship we are party to.
We hold this data;
- in order to carry out legally required duties.
- in order for us to carry out our legitimate interests.
- in order to perform the contract between us.
Your data will be shared with colleagues within the Company where it is necessary for them to undertake their duties. Your data will not be shared with bodies outside of the European Economic Area. In the event that this is necessary and does not fall under the reasons we hold your data, we will seek your consent to do so.
We take the security of your data very seriously and we will always apply appropriate technical and organisational measures to ensure the protection of your personal data.
We will always take appropriate precautions to prevent the loss, misuse or alteration of your personal information. As an example, this includes the active use of:
- Data Minimisation
How long do you hold my data?
We hold your information only for as long as necessary and for the purpose we use it.
Any questions should be referred directly to Bradfor Ltd’s Data Controller, Patricia Clements.