To comply with the new General Data Protection Regulation (GDPR) coming into effect on 25th May 2018 this is our Customer Privacy Notice to make you aware of how we use your personal data.
What we need
The Planning Partnership will be what’s known as the ‘Controller’ of the personal data you or your staff provide to us or have already provided to us. Under the GDPR we hold your information on a legitimate basis, meaning that we cannot provide you with our service if we do not have access to your personal data. By disclosing your Data to us, you consent to the collection, storage, processing, use and disclosure of your Data by us as described in this Privacy Statement. If you do not agree with or are not comfortable with any aspect of this Privacy Statement, your only remedy is to discontinue using our services. We collect basic personal data which includes names, addresses and email addresses, details which is stored in a secure location. We also hold information in our Accounts systems on a Legal basis to comply with current Tax Legislation.
Why we need it
We need to know your personal data to provide you with our planning consultancy services and associated information. We will not collect any personal data from you that we do not need to provide and oversee our services to you. This personal data that you volunteer to us will be processed for the following purposes:
- To contact you in response to any communications you might send us;
- To provide you with the information / service you have requested, including forwarding the information to sub-consultants or other members of design teams to ensure the provision of a full and complete service;
- To send you invoices and statements as agreed until all fees are fully paid. We hold information in our accounts system necessary to process your account.
What we do with it
The personal data we process is processed by our staff to provide our services to you, however at times we are required to share some of your personal data to third parties who form part of the design team on your projects. These details would be end user contact details or business contact details where required.
What are your rights?
Under the GDPR, an Individual’s rights are:
- The right to obtain details about how their data is processed by an organisation or business.
- The right to obtain copies of personal data that an organisation holds on them.
- The right to have incorrect or incomplete data corrected.
- The right to have their data erased by an organisation, where, for example, the organisation has no legitimate reason for retaining the data.
- The right to obtain their data from an organisation and to have that data transmitted to another organisation.
- The right to object to the processing of their data by an organisation.
- The right to not to be subject to automated decision making, including profiling.
What are we asking you to do?
There is no need for you to do anything more for our current service to continue.
To find out what personal data we hold on you or to have your personal data updated, amended or removed from our files, please e-mail firstname.lastname@example.org
This Statement will be reviewed at least annually and updated if needed.