Privacy & Cookie Policy

On 25th May 2018, a new data protection law, the General Data Protection Law (‘GDPR’), comes into effect in the UK. The GDPR will give you more control over your personal data, and greater transparency around how it is used.

At Stratia, we have always been committed to keeping your personal data safe and secure, and the GDPR does not change our commitment to you.

However, we have updated our Privacy Policy to explain these changes, and to give you more information about how we collect, use, and store your personal data. Our Privacy Policy also sets out clearer information about your rights in relation to your personal data.

 

Privacy policy

This privacy notice has been updated in line with the new GDPR regulation which comes into force on the 25th May 2018. This privacy notice outlines how we utilise your data from this website and within our company. It excludes any websites you have accessed.

 

Our data commitments

  1. We respect your privacy and your choices.

  2. We make sure that privacy and security are embedded in everything we do.

  3. We will not send you marketing communications unless we have requested your prior permission. You can change your mind at any time.

  4. We will never sell or share your personal data.

  5. We are committed to keeping your personal data safe and secure.

  6. We are committed to being open and transparent about how we use your personal data. and this is only with your prior consent.

  7. We will only use your personal data in ways with your joint consent.

 

Standard business operations

Stratia provides services under contract in line with client requirements. We undertake to provide you with the information you request from us. We operate a billing payments and recovery operating model.

 

Data controller contract details

If you have questions about this privacy notice or questions relating to GDPR data protection issues, then please contact datacontroller@stratia.co.uk or by calling 01925754998.

 

Data types

This privacy notice applies to data that you have either supplied to us or we have collected during business transactions.

 

Forms of data (you supply)

This is personal information about you/your company that you share with us, plus verbal personal information that you give us consent to use. This also includes other third party data provided to us in a multi-vendor scenario.

 

Forms of data (we collect)

Telephone conversations may be recorded to improve training and quality. We may deal with data from third parties but will ensure that they are GDPR compliant. Publicly available information from public sources will form part of our compliance. When other information is made available, we will endeavour to ensure that compliance is met. Where social media facilities such as LinkedIn, Twitter etc. are utilised and you correspond with us, we will only send information you have specifically requested and this will form part of our GDPR rigour.

 

How your data will be used

We collect data to operate our business and deliver a service to our customers. Occasionally, we may also contact you regarding surveys relating to customer satisfaction, review or assessment, designed to improve service levels to you. You do not have to respond to surveys.

 

Where your data is stored

All information you provide to us is stored on our secure servers. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

 

Third party contacts

We may contract with third parties to improve data security as part of our business development activity and to perform analysis.

 

Crime prevention

We may share personal information with the relevant agencies if we suspect fraud, money laundering or terrorist related activities or where there is a legal requirement to do so.

 

Safeguarding and sensitive data

Our services are not intended to be used by children under 16 years of age and as a consequence we would never collected data from children under this age. There is no occasion when any data relating to your politics, beliefs, medical information etc will be processed by us.

 

Selling or transferring data

We do not sell data to any third parties. We may engage with third parties to contract on your behalf but there is a legal requirement to ensure GDPR compliance. We may share or disclose your data only in the following circumstances:

  • If our website is acquired by a third party

  • If we buy, sell or merge our company

 

Internet security

Your data is treated in confidence and is securely protected in line with GDPR requirements.

 

How long we keep your data for

We will keep your data for the duration of the relationship and a term of 7 years minimum as required legally.

 

Your data protection and privacy rights

There are various rights that you have as a UK natural living person (individual) under the GDPR. Below are the abbreviated ICO definitions and include:

  • The right to be informed – individuals have the right to be informed about the collection and use of their personal data.

  • The right of access – individuals have the right to access their personal data and supplementary information.

  • The right to rectification – individuals have the right to have inaccurate personal data rectified, or completed if it is incomplete.

  • The right to erasure – the right for individuals to have personal data erased. This is also known as ‘the right to be forgotten’. Please note this right is not absolute and only applies in certain circumstances.

  • The right to restrict processing – the right to request the restriction or suppression of their personal data. Please note this is not an absolute right and only applies in certain circumstances.

  • The right to data portability – the right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services.

  • The right to object – individuals have the right to object to processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling), direct marketing (including profiling) and processing for purposes of scientific/historical research and statistics.

Access the full ICO rights under GDPR or you can call them on 0303 123 1113.

 

How we use cookies

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

 

Contact us

We are registered in the UK and our company registration number is 600725.

Please contact us if you have any questions about our privacy policy or personal data we hold about you: datacontroller@stratia.co.uk.