Privacy Notice
The term ‘Northwest Innovations Limited’ or ‘us’ or ‘we’ refers to the owner of the website, and our registered office. ‘You’ relates to the visitor or user of our website. We are registered in England and Wales under company number 14425558 and have our registered office at Bentley Suite, The Motorworks, Chestergate, Macclesfield, Cheshire, United Kingdom, SK11 6DU.
This notice applies to all business contacts (i.e. representatives or employees of clients and prospective clients), suppliers, applicants, and all other third parties in general. We take our privacy responsibilities seriously and are committed to protecting and respecting the privacy of everyone we engage with.
This notice outlines the way that any personal data that we are provided with is processed by us. Please read the following carefully to understand our policies and practices regarding personal data and how we handle it.
When we collect, use and process personal data we are subject to the provisions of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We are also subject to the EU General Data Protection Regulation (EU GDPR) in relation to personal data we collect, use, and process in the European Economic Area (EEA).
DEFINITIONS
In this notice, please note the use of the following terms:
has the meaning given to it by the UK/EU GDPR and means any information relating to an identified or identifiable individual (known as a data subject);
refers to Northwest Innovations Limited.
PERSONAL DATA WE COLLECT
The personal data we receive and process is dependent upon how you access our website, what you do whilst you are accessing it, and your purpose for accessing our website. We do not generally perform any direct collection of personal data through our website as we do not currently have a contact form. However, if you contact us via any other means (such as by emailing or calling us), the type of data that we can acquire can include:
Information on client computer hardware and software may also be collected and stored. This information can include an IP address, browser type, domain names, access times, and website address. This information is used by us for the operation of our service and to maintain the quality of our service.
We also collect the business contact information of our clients and potential clients.
HOW WE USE PERSONAL DATA
Personal information about website users in general
In general terms, we may use your personal data to:
If you enquire about our services by contacting us, we use your data to provide you with the information you need from us. The legal basis for this use of your data is the legitimate interest in growing and maintaining our client base.
Please note that it is important that the personal data we hold about you is accurate and up-to-date. Please keep us informed if your personal details change during your relationship with us.
Personal information about clients
We only process our clients’ information in accordance with their written instructions, and for the following main purposes:
We will always offer individuals the right to opt-out of further communications and should the individual choose not to be contacted by us again; in which case, we record this and ensure we do not communicate with that individual again.
We will not send marketing material to an individual’s personal email address or home address without their opt-in consent.
If you have any questions about the use to which we put your data, please contact us.
SHARING YOUR DATA WITH OTHERS
We will attempt to reduce circumstances that require us to share your personal data with others to the best of our ability.
Nevertheless, it may be necessary for us to share your personal data with others in order to perform our services for you, to comply with our contractual obligations to you, to comply with our legal or regulatory obligations, or to comply with any other contractual, legal or regulatory obligations that we may become subject to.
In these circumstances, we will always ensure that those with whom your data is shared process it in an appropriate manner and take all necessary measures in order to protect it. We will only ever allow others to handle your personal data if we are satisfied that the measures which they take to protect that personal data are satisfactory and protected by contractual or statutory obligations and safeguards as strong as those held by us.
Please be aware that, from time to time, we may be required to disclose your personal data to, and exchange information about you or relating to you with, government, law enforcement and regulatory bodies and agencies in order to comply with our own legal and regulatory obligations.
We may also need to share some personal information with other parties, such as po-tential buyers of some or all of our business or during a re-structuring. Often, infor-mation will be anonymised, but this may not always be possible or convenient for the efficiency of the purposes described in this section. The recipient of the information will be bound by confidentiality obligations, and will also have to comply with your GDPR rights any time you wish to exercise them (see below ‘HOW TO ACCESS AND CONTROL YOUR PERSONAL DATA’).
This notice relates to your use of our website and electronic communications. Please note that our website may link to other third-party websites that may also gather information about you.
Third-party websites will operate in accordance with their own separate privacy policies, and we have no control over any personal data that they may acquire, store and use. For privacy information relating to these other third-party websites, you should consult their privacy policies as appropriate.
HOW YOUR PERSONAL DATA IS KEPT
Your personal data will be kept secure at all times.
We operate various security measures in order to prevent loss of, or unauthorised access, to your personal data. To ensure this, we restrict access to your personal data to those without a genuine business need to access it, and we have procedures in place to deal with any suspected data security breach.
We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. In this unlikely event, we will report all serious data breaches to the Information Commissioner’s Office (ICO) within 72 hours which result in the loss, release or corruption of Personal Data.
In addition, we take the following steps to protect your personal data:
In general, we will retain your data for only so long as is necessary for the various objectives and purposes contained in this notice. Please note, however, that different periods for keeping your personal data will apply depending upon the type of data being retained and the purpose of its retention.
INTERNATIONAL TRANSFERS NOTICE
So that we can provide and maintain our Service, your information, including Personal Data, is processed at the Company’s operating offices and in any other places where the parties involved in the processing are located. It means that this information may be accessed by and transferred to — and/or stored on — computers and by staff located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. Despite any differences in the regional or national laws, we will, in all circumstances, safeguard personal data as set out in this Privacy Notice.
Our business currently operates within the UK and the European Union. However, should we have to transfer personal data from the European Economic Area to a country outside the UK or EEA (or a country that is NOT considered as offering an adequate level of protection as adopted by the European Commission, Art. 45 of the GDPR), additional measures will be in place to safeguard the relevant personal data. Such transfer will be based on legal grounds and mechanisms justifying such transfer, such as EU Commission-approved standard contractual clauses, or other legal grounds permitted by applicable law, unless exempted by an adequacy decision (http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm). Please contact our Data Protection Officer on the contact details set out in this Privacy Notice if you want further information on the specific mechanism used by us if we ever need transferring your personal data out of the EEA.
COOKIES NOTICE
Cookies are created when you visit a website or use an app. They are small files that are stored on your device and used to customise your experience.
When you access our website for the first time, you will be asked to confirm your acceptance of cookies for this website.
To help you make your choices, our Cookies ‘Notice explains how we use cookies and similar technologies to collect information when you access our services and how we use that information. We also explain when and how you can manage your data. We highly encourage you to read our Cookies’ Notice in conjunction with our privacy notice and Terms & Conditions.
HOW TO ACCESS AND CONTROL YOUR PERSONAL DATA
Clients and individual data subjects have the right to access all information held about them to ensure that their personal data is accurate and relevant for the business purposes for which it was collected. Data protection legislation gives you, the data subject, various rights in relation to your personal data that we hold and process. Those rights are, in the main, set out in Articles 12–23 of the UK/EU GDPR:
If you want to review, verify, correct or request erasure of your personal data, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, you can contact us:
We may need to request specific information from you to help confirm your identity and ensure your right to access the information. This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
We will try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated, but we will always comply with Subject Access Rights Request’ timeframes recommended by the authorities.
You also have the right to make a complaint at any time to the Information Commissioner’s Office (“ICO”), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
CHANGES TO THIS PRIVACY STATEMENT
This privacy notice is current and accurately reflects our data handling practices. Please note that the terms and provisions of this privacy notice may be changed, updated and amended from time to time. These changes can arise, among other reasons, due to changes in legislation or our own business operational changes. We encourage you to check this page regularly, as changes can be introduced without notice.