COMFG Ltd respects the importance of your privacy.
This privacy notice lets you know what happens to any personal data that you give to us, or any that we may collect from or about you.
It applies to all products and services, and instances where we collect your personal data.
This privacy notice applies to personal information processed by or on behalf of COMFG Ltd.
2. Your rights
2.1 As a data subject, you have the following rights under the GDPR, which this Policy and our use of personal data have been designed to uphold:
2.1.1 The Right to be informed about our collection and use of personal data;
2.1.2 The right of access to the personal data we hold about you (see section 7);
2.1.3 The right to rectification if any personal data we hold about you is inaccurate or incomplete (please contact using the details in section 8);
2.1.4 The right to be forgotten, i.e. the right to ask us to delete any data we hold about you. As explained in section 6 but if you would like us to delete it sooner, please contact us using the details in section 8.
2.1.5 The right to restrict (i.e. prevent) the processing of your personal data;
2.1.6 The right to data portability (obtaining a copy of your personal data to re-use with another service or organisation).
2.1.7 The right to object to us using your personal data for particular purposes; and
2.1.8 Rights with respect to automated decisions making and profiling.
2.2 If you have any cause for complaint about our use of your personal data, please contact us using the details provided in section 8 and we will do our best to solve the problem for you. If we are unable to fully meet your request, you also have the right to lodge a complaint with the UK’s supervisory authority, the Information Commissioners Office or your local Citizens Advice Bureau.
3. What data we collect
3.1 We keep several categories of personal data on our customers, suppliers, employees and/or third parties in order to carry out effective and efficient processes. We keep this data within our computer and archive systems.
3.2 Specifically, we hold the following types of data, personal details such as:
3.2.3 Phone Numbers
3.2.5 Departmental Title
3.3 If you send us an email, we may collect the above, and any other information which you may choose to give us.
4. How we use your data
4.1 If we do collect any personal data, it will be processed and stored securely, for no longer than is necessary in light of the reason(s) for which it was first collected. We will comply with our obligations and safeguard your rights under the Data Protection Act 1998 and/or GDPR at all times. For more details on security see section 6, below.
4.2 If you contact us and we obtain your personal detail from your email, we may use them as follows;
4.2.1 To reply to your email.
4.2.2. For any future contact pertaining to Federation business and our “legitimate interests”. Electronically i.e. Application forms, emails enquiries, website enquires etc.
4.2.3 Retain supplier questionnaires to maintain official contact for procurement of goods and services to comply with our quality systems for approved suppliers.
4.2.4 Retain trade application to complete credit checks and obtain references.
4.3 Any and all emails containing your personal data will be deleted when they no longer fall within the definition of legitimate interest.
4.4 You have the right to withdraw your consent to us using your personal data at any time, and to request that we delete it.
4.5 We will not share any of your data with any third parties for any purposes outside of legitimate interest.
4.6 If you place an order directly with us we will use your personal data to process and fulfil that order.
5. How we collect your data
5.1 If you send us an email, contact us via our website, place an order, create an account, subscribe to our newsletter, complete guarantee forms, complete accident report forms, submit job applications, respond to questionnaires, enter competitions, we may collect your name, email address and other information which you choose to give us.
5.2 We also collect other information about the use of our website and services. Some of this information we may automatically collect when you visit the website, such as what type of device you have, your location and which type of internet browser or mobile device you use, whether you visited our website from another website or service and your IP address. We only use this information to give us a statistical picture of how the website is used.
6. How and where we store your data
6.1 We only keep your personal data for as long as we need to in order to use it as described above in section 4, and/or for as long as we have your permission to keep it.
6.2 We operate within the EU, any data processed outside the EU will also be stored securely.
6.3 Data security is very important to us, and to protect your data we have taken suitable measures to safeguard and secure any data we hold about you.
6.4 Steps we take to secure and protect your data include:
6.4.1 Secure network drives with password protection Internal drives.
6.4.2 External offsite storage with password protection Cloud storage.
7. How you can access your data
You have the right to ask for a copy of any of your personal data held by us (where such data is held). Under the GDPR, no fee is payable and we will provide any and all information in response to your request free of charge when the request is deemed simple and straightforward. Please contact us using our details in section 8.
8. Contact us
COMFG Ltd have a dedicated data protection officer (“DPO”). Please ensure that your query is clearly marked for the attention of the DPO, particularly if it is a request for information about the data we hold about you (as under section 7, above). Should you wish to read more information on privacy legislation or the General Data Protection Regulation (GDPR) we recommend that you visit the Information Commissioner’s Office at http://ico.org.uk.