About NC Creative Group Limited and our Data contacts
Whilst we will keep all of your personal information confidential, we reserve the right to disclose this information in the circumstances as set out within this policy. We confirm that we will keep the information on a secure server and that we will comply fully with all applicable UK Data Protection legislation and regulations in force from time to time.
We may change this Policy from time to time so please check this page occasionally to ensure that you’re happy with any changes. By using our website, you’re agreeing to be bound by this Policy.
Any questions regarding this Policy and our privacy practices should be sent by email to email@example.com or by writing to us at NC Creative Group Limited, Corner Oak, 1 Homer Road, Solihull, West Midlands, UK B91 3QG. Alternatively, you can telephone +44 0121 711 6510.
How we use personal data
We may collect and retain in our records some or all of the following data about you (although this is not an exhaustive list):
a) information that you need to provide when you acquire or use our services. This information may include name, address, telephone number, email address.
b) other information which is optional for you to provide when you acquire or use our services;
c) details of your correspondence with NC Creative Group Limited and any other information you have given to NC Creative Group Limited e.g. customer feedback forms, company documents- brand toolkits, financial information, marketing plans
We will use only use data in the following ways:
a) Consent: the individual has given clear consent for us to process their personal data for a specific purpose. For example, they’ve signed up to our newsletter to receive marketing emails.
b) Contract: the processing is necessary for a contract we have with the individual, or because they have asked us to take specific steps before entering into a contract.
c) Legal obligation: the processing is necessary for us to comply with the law.
d) Vital interests: the processing is necessary for us to protect someone’s life.
e) Public task: the processing is necessary for us to perform a task in the public interest or for our official functions, and the task or function has a clear basis in law.
f) Legitimate interests: the processing is necessary for our legitimate interests or the legitimate interests of our clients unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.
Who we share personal data with and why
In addition to the uses set out above, we may pass on your personal information to third parties and contractors who provide services to or for us. Such services may include sending mail, payment processing and marketing services which are necessary to provide you with the services you have requested.
We will only disclose information to unrelated third parties without your consent if we are under a duty to disclose or share such information in order to comply with any legal obligation, or on the request of a legal or regulatory authority, or in order to enforce or apply our Terms and Conditions, or if we are otherwise permitted to do so in accordance with applicable data protection laws.
How you can access and update your information
Your data and your rights
Under UK data protection law you have the right to request that we update your personal data at any time. You also have the right to object if your personal data are being processed unlawfully (e.g. if the data are retained for longer than necessary for the purpose for which they were collected). If you wish to exercise these rights please email us at firstname.lastname@example.org
You have the right to make a request for access to information held about you (a “subject access request”). If you would like to make a subject access request please email email@example.com and use the heading “SUBJECT ACCESS REQUEST” in your email. Your right of access will be handled in accordance with applicable data protection laws.
How you can withdraw consent for us to use your data
If you have any questions or concerns about how NC Creative Group Limited handles your personal information, please contact our Data Protection Officer at firstname.lastname@example.org
Our Security and your data
We will take appropriate security measures against unlawful or unauthorised processing of your information, and against the accidental loss of, or damage to, your information. The security of your personal information is very important to us and our objective is to maintain the confidentiality, integrity and availability of information as follows:
Confidentiality – only authorised people can access the information.
Integrity – information should be accurate and suitable for the purpose for which we use it.
Availability – only authorised users should be able to access the data if they need it for authorised purposes.
Whilst we will use all reasonable efforts to safeguard your information, you acknowledge that the use of the internet or the storage of information can never be entirely secure and for this reason we cannot guarantee the security or integrity of any information held by us.
We will not retain data for longer than is necessary for the purposes for which it was collected.
GDPR Compliance Statement
Our Data Protection Officer is Richard Smith – email@example.com
All our staff and contractors are familiar with GDPR and their personal responsibilities. You are welcome to see our policy. Please request via our contact us page.
All staff are trained on induction and every two years (or sooner if there is a major change in legislation).
We have a right to erasure process. If you wish to be erased, please email firstname.lastname@example.org
Our privacy notice above informs people what we do with their personal data.
No personal data is transferred outside of the EU.
When processing data we undertake the following:-
We do not process sensitive information directly. We may process information on behalf of a client if they ask. This would be subject to strict privacy controls.