This website is not intended for children and we do not knowingly collect data relating to children
Nephos Solutions Limited(“we”) operates the nephos.co.uk website and is incorporated and registered in England and Wales with the company number 09414740 with registered office at White Rose House 8 Otley Road, Headingley, Leeds, England, LS6 2AD. We remain fully committed to the protection of your privacy at all times and we are registered with the Information Commissioner’s Office (ICO) with registration number ZA277369.
For the purpose of the Data Protection Act 1998 and from 25th May 2018 unless and until the GDPR is no longer directly applicable in the UK, the General Data Protection Regulation ((EU)2016/679)(“GDPR”) and any national implementing laws, regulations and secondary legislation, as amended or updated from time to time, in the UK and then any successor legislation to the GDPR or the Data Protection Act 1998 (the “Data Protection Laws”), we are the data processor and our customers are the Data controller.
We may collect, obtain and use the following Personal Information about you:
We may obtain information about your computer, which includes your IP Address, browser type, version number and operating system where available. This accumulation of data is used to assist system administration.
To the extent that any of this information constitutes Personal Information for the purpose of the Data Protection Laws, it will be processed by us in accordance with our responsibilities under the Data Protection Laws.
We may also collect information regarding your browsing activity and interests through use of a cookie file. This cookie file is stored on the hard drive of your computer and contains information that is transferred to your computers hard drive. We use the collection of this Personal Information to help us improve the experience of users on our sites to deliver a more personalised service with more relevant content.
We use information in furtherance of our legitimate interests in operating out Services, Websites and business. More specifically:
We will keep your personal data only as long as is necessary for the purpose(s) for which it was collected, and in accordance with our Information Security Policy. Data will be securely destroyed when no longer required.
Where you exercise your right to erasure, we will continue to maintain a core set of personal data (name, date start using software) to ensure we do not contact you inadvertently in future, and to maintain your record for archive purposes. We may also need to retain some financial records about you for statutory purposes (e.g. accounting matters).
We will take appropriate security measures against unlawful or unauthorised processing of personal data, and against the accidental or unlawful destruction, damage, loss, alteration, unauthorised disclosure of or access to personal data transmitted, stored or otherwise processed.
We have put in place procedures and technologies to maintain the security of all personal data from the point of the determination of the means for processing and point of data collection to the point of destruction. These steps take into account the sensitivity of the Personal Information we collect, process and store. We have received internationally recognized security certification for ISO27001 (Information security management system)
We will maintain data security by protecting the confidentiality, integrity and availability of the personal data, defined as follows:
To the extent prohibited by applicable law, we do not allow users of our Services and Websites by anyone younger than 16 years old. If you learn that anyone younger than 16 has unlawfully provided us with personal data, please contact us immediately and we take the steps to delete such information.
You have the following rights:
To Be Informed:
This privacy notice provides the information you are entitled to receive:
Please contact us if you would like confirmation that your data is being processed and access to your personal data.
There is no charge for us providing you with this data and it will be provided within a month of the request (unless the request is unfounded or excessive).
Please inform us of any data which you would like rectified and we will usually respond within a month of the request. We will pass on the changes to any third parties who need to change their records and let you know this has been done.
You may exercise your right to have your personal data erased in a number of circumstances (e.g. if the data is no longer necessary in relation to the purpose for which it was created, or you withdraw your consent). Where possible we will comply with all such requests, though some details are part of the Nephos Solutions permanent which cannot reasonably be deleted.
You can tell us that we can keep your data but must stop processing it, including preventing future mailings and communications. If possible, we will inform any third parties to whom your data has been disclosed of your requirement.
Your data is across manual records and a bespoke Access database. We will do our best to provide information in a portable format, but it is unlikely that we can create systems to do so.
If we can, we will stop processing your data if you object to processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling). We will stop processing your data for direct marketing if you tell us to. We will stop processing your data if you object to processing for purposes of research and statistics.
Not to be subject
We do not use any automated decision-making
You have the right to lodge a complaint with the Information Commissioner’s Office at https://ico.org.uk/concerns
The controller for your personal data and our Data Protection Officer is the Information Security Manager of Nephos Solutions who can be contacted via firstname.lastname@example.org or Suite 2B, 2nd Floor White Rose House, Otley Road, Headingley, LS6 2AD.
Our Data Protection Officer is responsible for monitoring compliance with relevant legislation in relation to the protection of personal data. Please contact us at email@example.com if you have any concerns or questions about the above information or you wish to ask us not to process your personal data for particular purposes or to erase your data. Where you have specific requests relating to how we manage your data, we will endeavour to resolve these, but please note that there may be circumstances where we cannot comply with specific requests.
We will publish on our company notice board regarding any changes we make to this data protection statement and notify you by other communication channels where appropriate. If you have any concerns about your personal data held by Nephos Solutions you will need to contact by emailing firstname.lastname@example.org.