1. Background
DigiEnable understands that your privacy is important to you and that you care about how your information is used and shared online. We respect and value the privacy of everyone who visits Our Site or uses Our Services, and will only ever collect and/or use information in ways that are useful to you and in a manner consistent with your rights and Our obligations under the law.
This Policy applies to Our use of any and all data collected by Us in relation to your use of Our Site or Services. Please read this Privacy Policy carefully and ensure that you understand it. Your acceptance of Our Privacy Policy is deemed to occur upon your first use of Our Site or engagement with any of our Services. If you do not accept and agree with this Privacy Policy, you must stop using Our Site immediately and contact us directly.
2. Definitions and Interpretation
In this Policy the following terms shall have the following meanings:
“Cookie” | means a small text file placed on your computer or device by Our Site when you visit certain parts of Our Site and/or when you use certain features of Our Site. Details of the Cookies used by Our Site are set out in section 12, below;] |
“Our Site” | means this website – www.DigiEnable.co.uk |
“We/Us/Our” | means DigiEnable, a partnership business between Darren Jenkinson and Liz Hardwick.
DigiEnable, Cotton Court, Church Street, Preston, Lancashire, PR1 3BY |
3. Our lawful basis for processing your general personal data
- To conduct a contract or to take steps to enter into a contract
- Where you have provided us with clear consent to process your data
- Where it is necessary for legitimate interests, and your fundamental rights are not at risk
- Processing necessary for compliance with a legal obligation
- More information on lawful processing can be found on the ICO website and in Section 10
4. How we store this data
Your data is stored on our banking (Barclays) and accounting systems in order to allow us to invoice, receive and pay for goods/services.
We will keep your data throughout our customer relationship with your organisation unless you instruct us to erase data sooner.
As a business, DigiEnable run a ”privacy by design” or “lean data” model. This means we do not keep any personal data on our clients or any participants in our training workshops, in any databases or CRM systems.
Your business data (not personal data) which we have obtained from you directly or via a publicly obtainable means (e.g. your website) (Company Name, Generic Email Address [e.g. Info@, Accounts@ etc.], Phone Number, Company Bank Details, Company Address, VAT Registration Number, Charity Number) will be treated as confidential, and will be shared and processed only with DigiEnable partners (Liz Hardwick and Darren Jenkinson) and authorised third party organisations which will only use your data in accordance with the GDPR. The organisations must have provided their privacy notice and all those relevant are referenced below.
5. How we use this data
We run an email updates list which is hosted with Mailchimp (data processor) and is a double opt-in process. If you wish to unsubscribe at any time from our list click here, or on the unsubscribe link on the bottom of one of our newsletters.
If you are a current client, or a client we have worked with in the past 2 years, we may use your email address or phone number you have previously given us via email, to contact you under the GDPR rules of “conducting a contract” and “legitimate interests”.
If you have ever been a client of DigiEnable, a copy of your invoice will be on file in an archive, saved on a secure server, and if requested, will be passed onto the HMRC or other official bodies for audit, this is again under the GDPR rule of “compliance with a legal obligation”.
6. Our Site Usage
In terms of using our website, we do not allow you to sign up for a profile on our website directly, therefore we don’t collect personal data with any cookies on you. You can check this for any website with CookieChecker.
This website includes links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
We only track website usage, with tools like Google Anayltics (data processor), and this data is anonymised. We use this for legitimate interest in how our users interact with our website, so we can better understand and update our website, with you in mind.
If you wish to comment on any of our posts (and we love to hear from you, so please do), we use a plugin called Disqus (data processor), which enables you to use your social media accounts to login and comment. This means your data is not shared with us, and is kept with your social media platform provider.
7. Contacting DigiEnable
To contact us directly, you can email use your email in your chosen email client, or use our simple Contact Us form. When you fill in the form, it is processed as an email and forward to our Info@DigiEnable.co.uk email address. Your message is not kept on our systems.
If you contact us via either of these, we endeavour to reply within 48 business hours.
If you choose to interact, comment, or private message us via any of our social media platforms, for example Twitter or Facebook, we do not archive any of this data, and this data remains stored on that specific platform, until, if you so wish, you can delete it. We have no access to any of your private information on these platforms and you should read their specific Data Policy for each platform you are using, as they will be a data controller.
We will never share your data to any third parties without your consent, and will only introduce you via private email, to other clients or contacts we think may be of benefit to you and/or your business. If you wish us not to do this, please just let us know.
8. DigiEnable SEO Services
For our SEO clients, we will have admin access to your website using logins you have provided us to conduct our contracts of work. We may come into contact with, or have access to, your clients or pre-clients data through your “contact us” form submissions or other similar systems. We do not store, process or interact with any of this data. We anonymise any data on “number of contact us submissions” etc. only for inclusion in our reports to you.
If we have access to your Google Analytics account or other analytical website tools, as above, the data is anonymised and therefore not “personal data”.
9. Digital and Online Security
We take data and digital security very seriously and are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect or have access to online, such as secure servers, multiple high-security passwords and 2 factor authentication.
10. A Reminder of Your Rights
An overall reminder of your individual rights, under data protection law (with links to the ICO):
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object to processing
- Rights in relation to automated decision making and profiling
A reminder of the lawful basis for processing (with links to the ICO):
- Consent: the individual has given clear consent for you to process their personal data for a specific purpose.
- Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.
- Legal obligation: the processing is necessary for you to comply with the law (not including contractual obligations).
- Vital interests: the processing is necessary to protect someone’s life.
- Public task: the processing is necessary for you to perform a task in the public interest or for your official functions, and the task or function has a clear basis in law.
- Legitimate interests: the processing is necessary for your legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.
- Special Category data: this includes data on individuals race, ethnic origin, politics, religion, trade union membership, genetics, biometrics, health, sex life, sexual orientation and can only be processed in special circumstances only by legal authorities.
- Criminal Offence data: data that can only be processed in special circumstances by legal authorities.
11. Complaints Procedure
We take any complaints about our collection and use of personal information very seriously.
If you think that our collection or use of personal information is unfair, misleading or inappropriate, or have any other concern about our data processing, please raise this with us in the first instance. Contact details below.
If you remain unsatisfied, you can make a complaint to the Information Commissioner’s Office:
- If you would like to contact us about anything GDPR or Data related, please email Info@DigiEnable.co.uk with the subject “Data Request” and we will reply to you within 48 business hours
- Report a concern online the the Information Commissioner’s Office at https://ico.org.uk/concerns/, Call 0303 123 1113,Or write to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
12. Policy Updates
Please note, we may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 21st May 2018. Last update 2nd October 2018.
DigiEnable is a partnership business of Darren Jenkinson and Liz Hardwick, at Cotton Court, Church Street, Preston, Lancashire, PR1 3BY