Hampshire Cyber Watch (HCW) and our Cyber Champions are committed to safeguarding the privacy of all our Clients. This policy and notice has been drafted in accordance with the requirements of the General Data Protection Regulations (“GDPR”) and explains how we look after your personal data (in all situations where we collect your data). It sets out your privacy rights and also explains how the law and our approach to privacy and personal data protects you.
This privacy notice supplements any other privacy notices that we may provide to you at the point that we collect data from you and should be read in conjunction with those notices.
Please Contact Us if you have any questions or problems regarding the use of your Personal Data and we will gladly assist you.
Table of Contents
2. Data protection principles
3. Your rights regarding your Personal Data
4. What Personal Data we gather about you
5. How we use your Personal Data
6. Who else has access to your Personal Data
7. Security of data
9. Third Party links
11. Changes to this Policy
Personal Data – any information relating to an identified or identifiable natural person
- Processing – any operation or set of operations which is performed on Personal Data or on sets of Personal Data
- Data Subject – a natural person whose Personal Data is being Processed
- Child – a natural person under 16 years of age
- We/us – Registered members of Hampshire Cyber Watch.
2. Data Protection Principles
We promise to follow the following data protection principles:
- Processing is lawful, fair and transparent. Our Processing activities have lawful grounds. We always consider your rights before Processing Personal Data. We will provide you with information regarding Processing upon request.
- Processing is limited to the purpose. Our Processing activities fit the purpose for which Personal Data was gathered.
- Processing is carried out with minimal data. We will only gather and Process the minimal amount of Personal Data required for any purpose.
- Processing is limited with a time period. We will not store your personal data for longer than needed.
- We will do our best to ensure the accuracy of data, and the integrity and confidentiality of data.
3. Your Rights Regarding Your Personal Data
The Data Subject has the following rights:
- (i) Right to information – you have the right to know whether your Personal Data is being processed; what data is gathered, from where it is obtained, and why and by whom it is processed.
- (ii) Right to access – you have the right to access the data collected. This includes your right to request and obtain a copy of your Personal Data gathered.
- (iii) Right to rectification – you have the right to request rectification or erasure of any Personal Data that is inaccurate or incomplete.
- (iv) Right to erasure – in certain circumstances, you can request for your Personal Data to be erased from our records.
- (v) Right to lodge a complaint – in the event that we refuse your request under the Rights of Access, we will provide you with a reason as to why. If you are not satisfied with the way your request has been handled, please contact us.
- (vi) Right for the help of supervisory authority – you have the right for the help of a supervisory authority and the right for other legal remedies such as claiming damages.
- (vii) Right to withdraw consent – you have the right to withdraw any given consent for Processing of your Personal Data.
Please Contact Us if you wish to exercise these rights at any time. (See also the Complaints section).
4. Data We Gather
How do we collect your personal data?
Your data may be provided to us data by either of the following methods:
- (a) Information provided to us when you contact us via the HCW website.
- (b) Direct interactions with us by email, by phone, in person, or otherwise.
Information we collect
We will collect, process and store Personal Data only if it is provided directly by you to us. You may do this in your capacity as the user of this Website, by enquiring in relation to our services or requesting assistance as a Client. Personal Data covers any information that relates to you as an identifiable person. Below are examples of the type of data that this may include:
- (a) Identity Data including forenames, last name, maiden name, date of birth, gender, marital status, and username or similar identifier.
- (b) Contact Data may include address, email address and telephone numbers, personal title and location.
- (c) Technical Data may include internet protocol (IP) address, browser type and version, operating system, platform and other technology.
Information you provide us with
This might be your email address, name, contact phone numbers, home address, devices and software being used etc
Information automatically collected about you
This includes information such as your IP address that is automatically stored by cookies and other session tools to improve your customer experience. When you look at the contents of our website, your activities (but not your Personal Data) may be logged.
Publicly available information
We do not display any information about you aside from Client comments added to our Testimonials page. These will have been provided by you as a Client for this sole purpose and used with your approval.
5. How we use your Personal Data
We use your Personal Data in order to:
- Provide our service to you. This includes providing you with services that you have requested; communicating with you in relation to those services; communicating and interacting with you; and notifying you of changes to any services.
- Enhance your customer experience.
We use your Personal Data on legitimate grounds and/or with your Consent.
We Process your Personal Data for the following purposes:
- To identify you
- To provide you with a service or to inform you of a related service
- To communicate with you
- To send you personalised information on equipment or third parties where applicable
- To provide you with services requested or recommended
- For other purposes for which we have asked your consent such as the submission of a report on an incident to the appropriate agency. Agencies include Action Fraud, NCSC and local police. This will always be with your consent and on your behalf
- The link between purposes, context and nature of Personal Data is suitable for further Processing
- The further Processing would not harm your interests and there would be appropriate safeguard for Processing.
We have put in place security measures to prevent your data from accidental loss or disclosure. Once we have received your personal data, we will use procedures and security features to prevent unauthorised access as far as possible.