This privacy notice provides you with details of how we collect and process your personal data through your use of our site businesscostcomparison.co.uk.
By providing us with your data, you warrant to us that you are over 13 years of age.
Business Cost Comparison is the data controller and we are responsible for your personal data (referred to as “we”, “us” or “our” in this privacy notice).
We have appointed a Data Protection Officer who is in charge of privacy related matters for us. If you have any questions about this privacy notice, please contact the Data Protection Officer using the details set out below.
Our full details are:
Full name of legal entity: Marketing Position Ltd T/A Business Cost Comparison
Company Number: 11094169
Steven Fee – Data Protection Officer
Email address: firstname.lastname@example.org
It is very important that the information we hold about you is accurate and up to date. Please let us know if at any time your personal information changes by emailing us at email@example.com
BUSINESS COST COMPARISON AS A DATA CONTROLLER
To do this we collect your personal contact data from the completed web forms, supplied on our website or via Facebook, and connect you with the relevant service provider who may call or contact you via the contact data you provide to discuss your requested quotation.
There is no obligation to buy from the relevant service provider who makes contact.
Under the EU General Data Protection Regulation (GDPR) there are six lawful grounds for processing your personal data. These are detailed as follows:
- Consent – the individual has given clear consent for you to process their personal data for a specific purpose
- Contract – the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract
- Legal Obligation – the processing is necessary for you to comply with the law (not including contractual obligations)
- Vital Interests – the processing is necessary to protect someone’s life
- Public Task – the processing is necessary for you to perform a task in the public interest or for your official functions, and the task or function has a clear basis in law
- Legitimate Interests – the processing is necessary for your legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests. (This cannot apply if you are a public authority processing data to perform your official tasks.)
Further information regarding the lawful basis for processing personal data can be found at ico.org.uk
WHAT DATA DO WE COLLECT ABOUT YOU, FOR WHAT PURPOSE AND ON WHAT GROUND WE PROCESS IT
Personal data means any information capable of identifying an individual. It does not include anonymised data.
We may process the following categories of personal data about you:
|Data Category||Purpose||Lawful Ground|
via Get-A-Quote website form, contact form, emails, Facebook Ad Leads, Messenger Leads and or recorded calls
|To connect you with the relevant Service Provider||Legitimate Interests|
via website contact form, emails, social media and messaging or recorded calls
To communicate with you
To call and confirm your details
For Record Keeping
For the establishment, pursuance or defence of legal claims
via browsing activity on our website including IP address, browser details, length of visits, session activity, devices, page views and paths
To analyse your use of our website and other online services
To administer and protect our business and website
To deliver relevant website content and advertisements to you
To understand the effectiveness of our advertising
via your set preferences for receiving marketing from us and our 3rd parties
To enable you to partake in our relevant promotions including competitions, prize draws and free give-aways
To deliver relevant website content and advertisements to you
To deliver the latest relevant information, advice, guidance and offers
|Consent and Legitimate Interests|
SENSITIVE DATAWe do not collect any Sensitive Data about you. Sensitive data refers to data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data. We do not collect any information about criminal convictions and offences. We will only use your personal data for a purpose it was collected for or a reasonably compatible purpose if necessary. For more information on this please email us at firstname.lastname@example.org. In case we need to use your details for an unrelated new purpose we will let you know and explain the legal grounds for processing. We may process your personal data without your knowledge or consent where this is required or permitted by law. We do not carry out automated decision making or any type of automated profiling.
HOW WE COLLECT YOUR PERSONAL DATA
- When completing our Get-a-Quote form on our website, we will ask you for your contact details including your name, business name, email address, telephone number and postcode.
- This webform will also ask you for information on your service requirements relevant to your intended visit to our website.
- During telephone communication we record and store all calls digitally and securely.
- When completing a quote form on Facebook, we will ask you for your contact details including your name, business name, email address, telephone number and postcode.
- When communicating via Facebook Messenger we may collect your personal data such as your name, business name, email address, telephone number, Facebook Profile Photo and postcode.
- In addition to the above we may also collect personal data if you contact us, or we contact you via email, telephone or post.
MARKETING COMMUNICATIONSOur lawful ground of processing your personal data to send you marketing communications is either your consent or our legitimate interests (namely to grow our business). Under the Privacy and Electronic Communications Regulations, we may send you marketing communications from us if (i) you made a purchase or asked for information from us about our services or (ii) you agreed to receive marketing communications and in each case you have not opted out of receiving such communications since. Under these regulations, if you are a limited company, we may send you marketing emails without your consent. However you can still opt out of receiving marketing emails from us at any time. Before we share your personal data with any third party for their own marketing purposes we will get your express consent. You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you or OR by emailing us at email@example.com at any time. If you opt out of receiving marketing communications this opt-out does not apply to personal data provided as a result of other transactions, such as purchases, warranty registrations etc.
DISCLOSURES OF YOUR PERSONAL DATAWe may have to share your personal data with the parties set out below:
- Other companies in our group who provide services to us.
- Service providers who provide IT and system administration services.
- Professional advisers including lawyers, bankers, auditors and insurers
- Government bodies that require us to report processing activities.
- Trusted partners or service providers who supply the relevant quotations for your business needs.
- Third parties to whom we sell, transfer, or merge parts of our business or our assets.
INTERNATIONAL TRANSFERSWe share your personal data within our group of companies which involves transferring your data outside the European Economic Area (EEA). We are subject to the provisions of the General Data Protection Regulations that protect your personal data. Where we transfer your data to third parties outside of the EEA, we will ensure that certain safeguards are in place to ensure a similar degree of security for your personal data. As such:
- We may transfer your personal data to countries that the European Commission have approved as providing an adequate level of protection for personal data by; or
- If we use US-based providers that are part of EU-US Privacy Shield, we may transfer data to them, as they have equivalent safeguards in place; or
- Where we use certain service providers who are established outside of the EEA, we may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give personal data the same protection it has in Europe.