GDPR: Data Privacy Notice For Customers
Tyneham International Limited ("We") are committed to protecting and respecting your privacy.
The rules on processing of personal data are set out in the General Data Protection Regulation (the “GDPR”).
Data controller - A controller determines the purposes and means of processing personal data.
Data processor - A processor is responsible for processing personal data on behalf of a controller.
Data subject – A living individual to whom personal data relates
Categories of data: Personal data and special categories of personal data
Personal data - The GDPR applies to ‘personal data’ meaning any information relating to an identifiable person who can be directly or indirectly identified from that data. For example name, passport number, home address or private email address. Online identifiers include IP addresses and cookies.
Special categories personal data - The GDPR refers to sensitive personal data as ‘special categories of personal data’ (as explained in Article 9 of GDPR). The special categories specifically include genetic data, and biometric data where processed to uniquely identify an individual. Other examples include racial and ethnic origin, sexual orientation, health data, trade union membership, political opinions, religious or philosophical beliefs.
Processing - means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Third party - means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
Tyneham International Ltd is the data controller. This means we decide how your personal data is processed and for what purposes. Our contact details are: Home Farm Barns, Common Road, Snettisham, Kings Lynn, Norfolk PE31 7PD United Kingdom. Our Data Protection Officer is Stephen Ingrey, who can be contacted on 01485 540501 or by e-mailing firstname.lastname@example.org
We may collect and process the following data about you:
Information you give us. You may give us information about you by filling in forms on our site www.tynehamlp.com (our site) or by corresponding with us by phone, e-mail or otherwise. This includes information you provide when you register to use our site, search for a product, place an order on our site, and when you report a problem with our site. The information you give us may include your name, address, e-mail address and phone number. Please note any credit or debit card information you enter as part of completing a transaction within our website is NOT processed or stored by us, it is processed and held by the payment service provider (Shopify or Amazon). If you give us payment information over the telephone, this is not stored, we process the payment transaction and then immediately destroy any card details written down during the call.
Information we collect about you. With regard to each of your visits to our site we may automatically collect the following information:
Information we receive from other sources. We may receive information about you if you use any of the other websites we operate or the other services we provide. In this case we will have informed you when we collected that data that it may be shared internally and combined with data collected on this site.
We use your personal data for the following purposes:
Our lawful basis for processing your general personal data:
Processing is necessary for the performance of a contract with the data subject or to take steps to enter into a contract
In order to enable the quotation of and purchase of our products we will need to process your information.
Consent of the data subject
Via phone conversation, or through our website
Processing is necessary for compliance with a legal obligation
We are obliged to maintain accurate accounting records and proof of sale including destination of products by HMRC and other UK Authorities.
It is in our legitimate interest to do so, and will not be at the expense of the interests, rights or freedoms of the data subject
We have a legitimate business interest to process and store your data in ways which you would reasonably expect
Your personal data will be treated as strictly confidential, and will be shared only with the following third parties:
We may disclose your personal information to third parties:
We keep your personal data for no longer than reasonably necessary in order to make sure we hold adequate records in the event that this information is required.
All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:
We do not transfer personal data outside the EEA.
We do not use any form of Automated Decision Making in our business.
If we wish to use your personal data for a new purpose, not covered by this Data Privacy Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions.
To exercise all relevant rights, queries or complaints regarding data privacy please in the first instance contact our Data Protection Officer on 0845 456 4215 or email@example.com
If this does not resolve your complaint to your satisfaction, you have the right to lodge a complaint with the Information Commissioners Officeon 0303 123 1113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, England.