About this Policy:
SWT Software Ltd (“ShopWorks”) are committed to ensuring and protecting your privacy and the privacy of your data at any time you are using our website, and when you communicate electronically with us. Our Privacy and Security Policy is contained below and provides a detailed explanation as to how we may use your personal information provided to us or any we collect through legal means.
Key Definitions in our Policy:
"Personal data" means any recorded information we hold about a person from which they can be identified. It may include contact details, and other personal information.
"Processing" means doing anything with the data, such as accessing, disclosing, destroying or using the data in any way.
Our Key Data Protection Principles:
We recognise the need to treat personal data in an appropriate and lawful manner. We will comply with the data protection principles in the Data Protection Act 1998 as updated and by the General Data Protection Regulation (EU2016/679) (Data Protection Legislation), which say that personal data must be:
• Processed lawfully, fairly and in a transparent manner;
• Processed for limited purposes and in an appropriate way;
Adequate, relevant and not excessive for the purpose for which it is processed;
• Accurate and kept up to date;
• Kept no longer than is necessary for the purpose;
• Processed in a manner which ensures appropriate security to prevent against accidental loss, destruction or damage.
We will also ensure that any processing of personal data will be in line with the rights of the individual. We have set out these rights in more detail below.
How We Will Collect and Use Personal Data:
Our website provides tailored information for users. In order to use and receive the full benefit of our website, personal data will need to be uploaded and will be collected and processed. The website will be less effective without this information.
The information we will collect will include information provided to us by may include a person’s name and contact details.
When accessing our website via a PC or other device or application, we may also collect traffic data, weblogs, location data and other information that is submitted through the use of our system and/or our website or related applications.
Fair and Lawful Processing
Our use of your personal data will always have a lawful basis, either because you have consented to our use of your personal data (e.g. by subscribing to emails, handing us your details at a show or meeting with one of our salespeople and agreeing to a follow up), or because it is in our legitimate interests. Specifically, we may use your data for the following purposes:
Providing and managing your access to our site;
Personalising and tailoring your experience on our site;
Personalising and tailoring our products or services for you;
Replying to emails from you;
Supplying you with emails that you have opted into (you may unsubscribe or opt-out at any time by following the unsubscribe link in any of these emails)
Analysing your use of our site and gathering feedback to enable us to continually improve our site and your user experience;
With your permission and/or where permitted by law, we may also use your data for marketing purposes which may include contacting you by email, telephone or post with information, news and offers on our products and services. We will not, however, send you any unsolicited marketing or spam and will take all reasonable steps to ensure that we fully protect your rights and comply with our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003.
If we need to process personal data for any other reason we will notify you, unless otherwise permitted by the Data Protection Legislation.
Adequate, Relevant and Non-excessive Processing
Personal data will only be processed to the extent that it is necessary for the specific purposes set out in the policy or as otherwise notified to you.
We will keep the personal data we store accurate and up to date. Data that is inaccurate or out of date will be destroyed. Please notify us if personal details change or if you become aware of any inaccuracies in the personal data we hold about you or your staff.
We will not keep personal data for longer than is necessary for the purpose for which we are processing it. This means that data will be destroyed or erased from our systems when it is no longer required.
Processing in Line With Individuals’ Rights
All individuals have the right to:
• Be informed about the personal data we hold about them and why we are processing it;
• Request access to any personal data we hold about them;
• Request inaccurate data is amended and updated;
• Request the personal data is erased or restrict processing of that data;
• Object to processing of personal data and to prevent the processing of data for direct-marketing purposes;
• Prevent processing that is likely to cause unwarranted substantial damage or distress;
• Object to any decision being taken solely by a computer or other automated process.
Data Security and Storage
We will ensure that appropriate measures are taken against unlawful or unauthorised processing of personal data, and against the accidental loss of, or damage to, personal data.
We have in place procedures and technologies to maintain the security of all personal data from the point of collection to the point of destruction. We will only transfer personal data to a third party if such party agrees to comply with those procedures and policies, or has in place alternative adequate measures.
The data that we collect from you will be transferred to, and stored at, a destination inside the European Economic Area. If at any time we are required to transfer your personal data outside of the European Economic Area we will take necessary steps to ensure that your data is treated securely and in accordance with the Data Protection Legislation.
Maintaining data security means guaranteeing the confidentiality, integrity and availability (for authorised purposes) of the personal data.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Website, our website or application; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Providing Information to Third Parties
We will not disclose your personal data to a third party without your consent unless we are satisfied that they are legally entitled to the data. In the event we sell any business or assets, we may need to disclose personal data to the prospective buyer of such assets. Where we do disclose your personal data to a third party, we will have regard to the requirements of the Data Protection Legislation.
You agree that we have the right to share personal data with any member of our group including our subsidiaries and ultimate holding company and its subsidiaries (within the meaning of section 1159 of the Companies Act 2006).
Circumstances may arise when we may need to gather information about your computer to help provide appropriate website or products to you. The data gathered is solely statistical data which will not be shared with anyone.
Cookies are used to collect general online usage by using a cookie file. If used, this cookie file is downloaded without prompting. It will be placed on your hard drive with information transferred to the hard drive allowing the cookies to be used for data collection.
We welcome and hope you do not hesitate to make any queries or comments or requests regarding this Privacy and Security Policy. To do so, please contact us at firstname.lastname@example.org.