GDPR CONSULTANCY

We can advise companies and help deliver on the latest GDPR general data protection and privacy policy.

Contact us today on
0203 773 5030

(GDPR) GENERAL DATA PROTECTION REGULATION CONSULTANCY

We can advise companies and help deliver on the latest GDPR.

We offer the following GDPR services: We can help you deliver and become fully GDPR compliant, advise ongoing as a consultancy, offer virtual data protection, ensure all of your data is secure and help put into place your GDPR policies and procedures. By using our GDPR service you will benefit with various partnerships that ITC London work with.

We are fully accredited and registered with the (ICO) Information Commissioner's Office. An independent authority set up to uphold information rights in the public interest. Our registration number is ZA466460 and you can see our registration on the official Information Commissioners Office - Data Protection Public Register here...

Contact Us for a free quote

OUR GDPR & PRIVACY POLICY 2018

OVERVIEW

We at ITC London value your privacy and want to be clear about the data we collect, how we use it and your rights to control that information as well as third party companies we use to store your data, which is why we've created a Privacy Policy.


1. In light of the General Data Protection Regulation (GDPR) that was introduced on 25th May 2018, we’ve created a policy to reflect the high standards established by the General Data Protection Regulation (GDPR), a set of laws passed in the European Union. ITC London is fully GDPR compliant.

2. In addition to this we operate across the Atlantic so when working with and creating partnerships we only work with agencies that are fully compliant with The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks.

The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks were designed by the U.S. Department of Commerce and the European Commission and Swiss Administration to provide companies on both sides of the Atlantic with a mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce.

We respect your client personal contact data so rest assured ITC London will never sell your data, will keep your contact details secure and will never share them with third parties for marketing purposes. ITC London will only contact you with direct matters arising to your existing client relationship by phone, text, email or in writing.

Other than client personal contact data and data pertaining to your performance contract,
ITC London does not store or have access to any other information about its clients or their business data. Such information is held securely in the cloud with agreed agencies who are Privacy Shield members and comply with GDPR.


For more information about the ITC London Privacy Statement, please see our FAQs below. If you have specific questions or concerns about the use of your data, please contact us on enquiries@itclondon.com. We're here and happy to help.

FAQ

The following are basic questions you may have about our privacy statement. We recommend that you read the detailed statement above for additional details.

  1. Why is ITC London creating a privacy statement?

  2. What is the GDPR?

  3. What is The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks

  4. Why do you only use approved and accredited agencies from Privacy Shield?

  5. How often do you anticipate updating your privacy statement?

  6. What information does ITC London collect about me?

  7. Why does ITC London need my data and how is it used?

  8. Does ITC London store any other data about its clients?

  9. Does ITC London sell information to third parties?

  10. Can I opt out of sharing my information with ITC London?

  11. How do I delete my personal client contact data from ITC London and what are the consequences?

  12. Is ITC London using cookies to gather information from its website?

  13. How is information stored and secured on ITC London servers?

 

MORE HEADINGS​

1. Why is ITC London (company) creating a privacy statement?
We now meet the high standards required by the European Union's General Data Protection Regulation (GDPR) and have created our privacy statement to reflect that. We have made our privacy statement clear, concise and to the point so it is easy to read and understand.

2. What is the GDPR?
The GDPR is a regulation intended to strengthen and unify data protection for everyone within the European Union (EU). As we believe that our members can benefit from its mandates. The GDPR requires greater openness and transparency from companies on how they collect, store and use personal data, while also imposing tighter limits on the use of personal data. You can learn more here.

 

3. What is The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks?

A set of Frameworks were designed by the U.S. Department of Commerce and the European Commission and Swiss Administration to provide companies on both sides of the Atlantic with a safe guard mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce.

 

4. Why do you only use approved and accredited agencies from Privacy Shield?
These agencies have signed up to the Privacy Shield data protection code of practice, a safe guard mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce.

5. How often do you anticipate updating your privacy statement?
We will update our privacy statement as and when necessary to ensure that our policies are in line with international regulations and union rules.

 

6. What information does ITC London collect about me?
ITC London collect IP addresses and credentials of those servers from which obtained as well as personal client data such as contact details so that we may keep in touch with you through our company to client relationship.

7. Why does ITC London need my personal client data and how is it used?

ITC London uses the data to maintain a company to client relationship to communicate effectively and will only contact clients with direct matters arising to their existing client relationship by phone, text, email or in writing.

8. Does ITC London store any other data about its clients?

No. Other than client personal contact data and IP addresses, ITC London does not store or have access to any other information about its clients or their business data. Such information is held securely in the cloud with agreed agencies who are Privacy Shield members and comply with GDPR.

9. Does ITC London sell personal client data to third parties?
No. Rest assured ITC London will never sell your data, will keep your details secure and will never share them with third parties for marketing purposes.

 

10. Can I opt out of sharing my personal client data with ITC London?
No as the types of data that we collect are what’s known as “legitimate interest” a necessity in order for a company to client to relationship to be maintained. This is known as core functional data, which is essential for company to use.

 

11. How do I delete my personal client data from ITC London and what are the consequences?
Whilst we hold a company to client relationship you cannot ask for your core functional data to be deleted as this would result in a lack of methods should we need to urgently get hold of you so that we can maintain and provide an efficient and essential service. Should you wish to cancel your relationship with ITC London, then please do so in writing or by emailing your relevant account manager subject to contractual obligations. You should then request that your data be deleted, only non functional data will be deleted and the remaining data will be held securely on our secure cloud based servers for the required amount of years according to data protection laws.

 

12. How is information stored and secured on ITC London servers?
ITC London is committed to protecting the security of your personal client data. We use a variety of security technologies and procedures to help protect your personal data from unauthorised access, use or disclosure. For example, we store the personal data you have provided on secure computer systems and cloud based servers that have limited access and are in controlled locked facilities. Any data we transmit over the internet or email is protected using encryption.

 

13. Is ITC London using cookies to gather personal client data?
No at present it does not use cookies, should this change we will update our privacy policy and gather the relevant permissions that is required.

How can I contact ITC London if I have questions regarding ITC London's privacy statement?
If you have any questions about the use of your personal information, please send us an email to enquiries@itclondon.com

 

MORE HEADINGS

The Legal Bases for Using Personal Client Data

There are different legal bases that we rely on to use your personal information, namely:

Performance of a contract

The use of your personal client data may be necessary to perform the contractual agreement you have with us.

Legitimate interests

We may use your personal client data for our legitimate interests. For example, we rely on our legitimate interest to analyse and improve our Services to our clients and the content on our websites and servers, to send you notifications.

Where we process your personal client data information based on our legitimate interest and no opt-out mechanism is available to you. You may still exercise your right to object by sending an email to enquiries@itclondon.com

Security and Storage
Security

ITC London is committed to protecting the security of your personal information. However, while we take reasonable precautions to guard the personal information we collect, no security system is impenetrable.

While no Service is completely secure, ITC London takes precautionary measures to help prevent information about you from loss, theft, misuse and unauthorised access, disclosure, alteration and destruction. For example, we store the personal client data you provide on computer systems that have limited access and that are in controlled facilities on cloud based servers. We also ensure that our third-party (agencies) worldwide are all approved members of Privacy Shield and already have contracts in place to comply with data protection laws and frameworks providing their own adequate security measures. Additionally, your data is protected with encryption, during transition over the Internet.

If you have any questions about the security of your personal information, you can contact us at enquiries@itclondon.com

Storage

Personal client data collected by ITC London will only be stored and processed on secure computers and cloud-based servers. Other than client personal contact data, ITC London does not store or have access to any other information about its clients or their business data. Such information is held securely in the cloud with agreed agencies who are Privacy Shield members and comply with GDPR.

Your Rights and Choices

Your Rights

We want you to be in control of how your personal information is used by us. Subject to local law, you can do this in the following ways:

  • you can ask us for a copy of the personal client data we hold about you

  • you can inform us of any changes to your personal client data, or if you want us to correct any of the personal client data we hold about you;

  • in certain situations, you can ask us to erase, block or restrict the personal client data we hold about you.

  • Where we process your personal client data based on legitimate interest or the public interest, you have the right to object at any time to that use of your personal client data. Please note you will still contractually obliged.

 

We rely on you to ensure that your personal client data is complete, accurate and up to date. Please let us know of any changes to your details provided to ITC London.

Data Subject Access Requests

We would gladly assist in any data subject access requests free of charge.

Data subject access requests must be made in writing and we advise email enquiries@itclondon.com. To ensure action is promptly taken.

Please include the following:

  • Full Name

  • Email Address

  • Contact number

  • Details of the specific information you require and any relevant dates

We may ask for further information to identify you and ensure the personal data relates to the individual making the request.

We will respond within 30 days of receiving the information we require to carry out your request.

We are committed to working with you to obtain a fair resolution of any complaint or concern you may have about our use of your personal information. If, however, you believe that we have not been able to assist with your complaint or concern, you may have the right to file a complaint with the data protection authority.

Financial Data

There may be a need to make or take a payment over the phone. We will never keep or store this data and use a credible payment gateway that allows us to complete the transaction without writing any information down. Privacy is important to us we will make sure that when taking card details no one else is in the room. Relevant contractual invoices will be sent to the approved and authorised named person in the contract between ITC London and the client

 

We hope the above information answers any questions you may have, should you want to ask us another question then please feel free to contact us at the office.

Yours ITC London