This website belongs to Hydropool UK Ltd. This notice is the privacy notice of Hydropool UK Ltd, Company number 07750046 whose registered address is 30/34 North Street, Hailsham, East Sussex, BN27 1DW.
We respect your privacy and are committed to protecting your personal data. This privacy notice aims to give you information on how we collect and process any personal data that you give us when you purchase a product or service, make an appointment at a showroom, or for a home consultation, sign up to receive our brochures, product specifications, price lists, how to guides, or product manuals. It applies to personal information processed by or on behalf of us and is effective from 25th May 2018.
Changes to this privacy notice
Please note that this privacy notice may be changed from time to time by us updating it in order to reflect any changes in the law or our privacy practices. You are encouraged to check the privacy notice whenever you visit our website to ensure that you are happy with any changes.
Hydropool UK and the Data Protection Officer
For the purpose of data protection law in the UK, we are the data controller and we are responsible for your personal data.
A Data Protection Officer (DPO) has been appointed who is responsible for overseeing questions in relation to this privacy notice. You can contact the DPO by writing to the above address, marking it for the attention of the DPO.
INFORMATION WE COLLECT
- What kind of personal information about you do we process?
Personal information processed in connection with products and services provided, includes:
- Personal and contact details, such as title, name, address and contact details, marital status, date of birth, gender, billing address, delivery address, postcode, email address and telephone numbers.
- Records of communications with you such as brochure requests, appointment notifications, contract and warranty letters (as appropriate).
- Transaction Data such as details about payments to and from you and other details of products and services you have purchased from us.
- Financial Data such as bank account and payment card details.
- Other information relevant to customer surveys and/or offers.
- What is the source of your personal information?
Personal information is sourced by direct interactions, for example, you may give us your identity, contact and financial data by filling in forms or by corresponding with us by post, telephone, email or otherwise.
- What do we use your personal data for?
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
- Postal communications with you, where appropriate, such as brochures, promotional offers, appointment letters, warranty documents, invoices and accounting communications.
- To improve the business operations and managing our relationship with you.
- To monitor and to keep records of communications with you.
- For market research and analysis and developing statistics.
- To comply with legal and regulatory obligations, requirements and guidance.
- To share information, as needed, such as a delivery address, with service providers (such as accompanying trades or transport providers) as part of providing our products and services.
- To enable other Group Companies to perform any of the above purposes. Note we will get your express opt-in consent before we share your personal data with any company outside the Group Companies for marketing purposes.
- To process and deliver your order including managing payments, fees and charges and collecting and recovering money owed to us.
- Registering new customers.
- What are the legal grounds for our processing of your personal information (including when we share it with others)?
We rely on the following legal bases to use your personal data:
- Where it is needed to provide you with information about Hydropool UK Ltd products or services such as:
- Providing information about the products and services; and
- Managing all stages and activities relevant to provision of the product or services including enquiry, delivery and installation, administration and management of accounts.
- Where it is in our legitimate interests to do so, such as:
- Managing products and services provided, updating your records, tracing your whereabouts to contact you about your account (where appropriate);
- To keep records of our communications with you;
- To administer good governance requirements and those of other Group Companies, such as internal reporting and compliance or administration required for reporting processes;
- For market research and analysis and developing statistics;
- For direct marketing communications. Marketing communications can be sent to you by email, post and social media and digital channels (for example, using Facebook and Google); and
- Where there is a need to share your personal information with people or organisations to run our business or comply with any legal and/or regulatory obligations.
- With your consent or explicit consent:
- For some direct marketing communications where you have agreed to subscribe.
Note we have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.
In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulatory of a breach where we are legally required to do so.
- When do we share your personal information with other organisations?
We may share information with the following third parties for the purposes listed above:
- The Group Companies and service providers;
- Business partners (for example, financial services institutions) and others who are a part of providing your products and services or operating our business;
- Other organisations and businesses who provide services such as back up and server hosting providers, IT software and maintenance providers, document storage providers and suppliers of other back office functions; and
- Market research organisations who assist in the development and improvement of our products and services.
- How and when can you withdraw your consent?
Where we’re relying upon your consent to process personal data, you can withdraw this at any time by contacting us using the details below.
- Is your personal information transferred outside the UK or the EEA?
We’re based in the UK but sometimes your personal information may be transferred outside the European Economic Area. If we do so we’ll make sure that a similar degree of protection is afforded to it and that suitable safeguards are in place, for example by using approved contractual agreements, unless certain exceptions apply.
- What should you do if your personal information changes?
Contact us with any changes to personal information and your records will be updated as appropriate.
- Do you have to provide your personal information?
We might be unable to provide you with our products or services if you do not provide certain information. In cases where providing some personal information is optional, this will be made clear.
- For how long is your personal information retained?
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including the purposes of satisfying any legal, accounting, or reporting requirements.
Unless explained otherwise to you, your personal information your personal data will be held based on the following criteria:
- For as long as there are reasonable business needs, such as managing the relationship with you and managing internal operations;
- For as long goods and/or services are provided to you; and/or
- Retention periods in line with legal and regulatory requirements or guidance.
On occasion, we may gather information about your computer for our services and to provide statistical information regarding the use of our website.
Such information will not identify you personally it is statistical data about our visitors and their use of our site. This statistical data does not identify any personal details whatsoever.
It is used by us to analyse how visitors to www.hydropoolspas.co.uk interact with the website so that we can continue to develop this website and make it a better experience for our visitors.
We may gather information about your general internet use by using a cookie file that is downloaded to your computer. Where used, these cookies are downloaded to your computer automatically.
This cookie file is stored on the hard drive of your computer as cookies contain information that is transferred to your computer’s hard drive. They help us to improve our website and the service that we provide to you.
All computers have the ability to decline cookies. This can be done by activating the setting on your browser which enables you to decline the cookies.
Please note that should you choose to decline cookies, you may be unable to access particular parts of our website.
Linking to other websites
STORING YOUR PERSONAL DATA
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect, including locked cabinets and electronic password protection.
If at any point you suspect or become aware of a security incident (i.e. you receive suspicious communication from someone holding themselves out to be a Hydropool UK employee or from a dupe website claiming to be affiliated with Hydropool UK), please forward the communication to us or report the incident by email to our Data Protection Officer: Matthew Bunn at firstname.lastname@example.org or in writing to Hydropool UK at Hydropool UK Ltd. The Spa Showroom, London Road, East Grinstead, West Sussex, RH19 2RQ as soon as possible.
The transmission of information via the internet is not completely secure and therefore we cannot guarantee the security of data sent to us electronically and transmission of such data is therefore entirely at your own risk. Where we have given you (or where you have chosen) a password so that you can access certain parts of our site, you are responsible for keeping this password confidential.
ACCESS TO INFORMATION
The Data Protection Act 1998 gives you the right to access the information that we hold about you. Should you wish to receive details that we hold about you please contact us using the contact details below.
You have extensive rights under the General Data Protection Regulation, these include the right to:
- request a copy of the information that we hold about you.
- to correct or remove information you think is inaccurate.
- withdraw consent at any time.
- be forgotten (i.e. the right to ask us to delete, shred and otherwise remove any data we hold about you, except where we have a legal obligation under UK law).
For further information on your rights please visit the Information Commissioners Office at https://www.ico.org.uk
Should you wish to exercise any of your rights under the GDPR directive, please get in touch with us using the contact information below. Or you email our Data Protection Officer: Matthew Bunn at email@example.com.
If you prefer to write to us then our contact address is:
HYDROPOOL EAST GRINSTEAD
Hydropool UK Ltd. The Spa Showroom, London Road, East Grinstead, West Sussex, RH19 2RQ
Phone: 01342 311 000