“The GDPR was approved and adopted by the EU Parliament in April 2016. The regulation will take effect after a two-year transition period and, unlike a Directive it does not require any enabling legislation to be passed by the government; meaning it will be in force May 2018.”
In light of ‘Brexit’
If you process data about individuals of selling goods or services to citizens in other EU countries then you will need to comply with the GDPR, irrespective as to whether or not you the UK retains the GDPR post-Brexit.
If your activities are limited to the UK, then the position (after the initial exit period) is much less clear.
The UK Government has indicated it will implement an equivalent or alternative legal mechanisms. We expect that any such legislation will largely follow the GDPR, given the support previously provided to the GDPR by the ICO and UK Government as an effective privacy standard, together with the fact that the GDPR provides a clear baseline against which UK business can seek continued access to the EU digital market. (Ref:https://www.eugdpr.org)
How do we use your information?
We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
Do we use ‘cookies’?
If you disable cookies off, some features will be disabled that make your site experience more efficient and some of our services will not function correctly.
However, you can still place orders.
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information.
We do not include or offer third-party products or services on our website. Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users (https://support.google.com/adwordspolicy/answer/1316548?hl=en)
We have not enabled Google AdSense on our site but we may do so in the future.
Controlling your personal information
You may choose to restrict the collection or use of your personal information in the following ways:
- whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used by anybody for direct marketing purposes
- if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at [email address]
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.
We agree to the following:
Users can visit our site anonymously.
We have added a link to it on our homepage as a minimum.
Users are able to change their personal information:
• By emailing us
How does our site handle do not track signals?
We honour do not track signals and do not follow plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third-party behavioural tracking?
It’s also important to note that we allow third-party behavioural tracking.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. We do not specifically market to children under 13.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out severe penalties for violations.
To be in accordance with CAN-SPAM we agree to the following:
If at any time you would like to unsubscribe from receiving future emails, you can email us and we will promptly remove you from ALL correspondence.
Use of your personal data.
This notice sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
Identity and contact details
We are iFire UK Limited (Registered in Scotland No. SC407040), incorporated in Scotland on 8th September 2011. Our registered office is 219 Balgreen Road, Edinburgh, EH11 2RZ.
Data we collect and the legal basis for Processing.
The data we collect from you is a name, address, telephone numbers, email addresses and bank account details.
We use this data so we can fulfil our legal and contractual obligations.
Third Parties we share your information with.
We are an SSAIB (Security Systems and Alarms Inspection Board) accredited company. As part of that accreditation, we are obliged to provide you with a Certificate of Conformity for your installed system. We share your personal details with them in order to issue that certificate. Details of how the SSAIB use your information can be found here https://ssaib.org/page/privacy-policy—home-owner
We will not share your details with any other third party unless legally obliged to do so.
How long will the data be stored?
We keep your personal data for as long as we have a reasonable business need and for the purpose of satisfying any legal, accounting or reporting requirements.
Your rights in relation to your personal information
Under certain circumstances, by law, you have the right to:
- Request access to your personal information (commonly known as a “data subject access request”). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
- Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
- Object to processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.
- Request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it.
- Request the transfer of your personal information to another party.
If you have any problems with the way that we are handling your personal data, you should contact the Information Commissioner’s Officer (ICO).
The ICO can be contacted by telephone on 0303 123 113 – Monday to Friday, between 9am and 5pm – or by email at email@example.com. You can also visit the ICO’s website by following this link: https://ico.org.uk/.
Where is the data stored?
The data is only stored in the United Kingdom.
Changes to this privacy notice
We keep this privacy notice under regular review and any updates are posted on this page. This privacy notice was last updated on 22nd May 2018.
219 Balgreen Road
Edinburgh, Midlothian EH112RZ