Privacy Notice

 

 

The term ‘Northwest Innovations Limited’ or ‘us’ or ‘we’ refers to the owner of the website, and our registered office. ‘You’ relates to the visitor or user of our website. We are registered in England and Wales under company number 14425558 and have our registered office at Bentley Suite, The Motorworks, Chestergate, Macclesfield, Cheshire, United Kingdom, SK11 6DU.

 

This notice applies to all business contacts (i.e. representatives or employees of clients and prospective clients), suppliers, applicants, and all other third parties in general. We take our privacy responsibilities seriously and are committed to protecting and respecting the privacy of everyone we engage with.

 

This notice outlines the way that any personal data that we are provided with is processed by us. Please read the following carefully to understand our policies and practices regarding personal data and how we handle it.

 

When we collect, use and process personal data we are subject to the provisions of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We are also subject to the EU General Data Protection Regulation (EU GDPR) in relation to personal data we collect, use, and process in the European Economic Area (EEA).

 

 

DEFINITIONS

In this notice, please note the use of the following terms:

 

  • personal data

has the meaning given to it by the UK/EU GDPR and means any information relating to an identified or identifiable individual (known as a data subject);

  • processing
    • means any operation or actions performed on personal data; for example collection, recording, organisation, structuring, storing, altering, deleting or otherwise using personal data.
  •  
  • we, us and our

refers to Northwest Innovations Limited.

  • you and your
    • refers to the person who is accessing our website and whose data is processed;
  •  

 

PERSONAL DATA WE COLLECT

 

The personal data we receive and process is dependent upon how you access our website, what you do whilst you are accessing it, and your purpose for accessing our website. We do not generally perform any direct collection of personal data through our website as we do not currently have a contact form. However, if you contact us via any other means (such as by emailing or calling us), the type of data that we can acquire can include:

 

  • your name, address, email, telephone number and other contact details;
  • your date of birth;
  • details of any feedback you give us, and this may be by phone, email, post or via social media;
  • information about the services we provide to you;
  • your IP address, the browser you use, your operating system;
  • the pages of our website, or other resources on that website, that you have accessed and when you accessed them;
  • details of any documents or other resources that you have downloaded from our website.

 

Information on client computer hardware and software may also be collected and stored.   This information can include an IP address, browser type, domain names, access times, and website address.  This information is used by us for the operation of our service and to maintain the quality of our service.
We also collect the business contact information of our clients and potential clients.

 

 

HOW WE USE PERSONAL DATA

 

Personal information about website users in general

In general terms, we may use your personal data to:

 

  • verify your identity;
  • provide services to you;
  • customise our website and its content to your particular preferences;
  • notify you of any changes to our website or to our services that may affect you;
  • improve our services;
  • receive your reviews and respond to them; and
  • respond to specific queries that you send us using our contact form.

 

If you enquire about our services by contacting us, we use your data to provide you with the information you need from us. The legal basis for this use of your data is the legitimate interest in growing and maintaining our client base.

 

Please note that it is important that the personal data we hold about you is accurate and up-to-date. Please keep us informed if your personal details change during your relationship with us.

 

Personal information about clients

We only process our clients’ information in accordance with their written instructions, and for the following main purposes:

 

  • With existing clients: fulfill the contract between us and the client. The legal basis for our use of your personal data is the performance of the contract.
  • Prospect clients: When you enquire about our services by contacting us, we use your data to provide you with the information you need from us. The legal basis for this use of your data is the legitimate interest in growing and maintaining our client base.

 

We will always offer individuals the right to opt-out of further communications and should the individual choose not to be contacted by us again; in which case, we record this and ensure we do not communicate with that individual again.

We will not send marketing material to an individual’s personal email address or home address without their opt-in consent.

 

If you have any questions about the use to which we put your data, please contact us.



SHARING YOUR DATA WITH OTHERS

 

We will attempt to reduce circumstances that require us to share your personal data with others to the best of our ability.

Nevertheless, it may be necessary for us to share your personal data with others in order to perform our services for you, to comply with our contractual obligations to you, to comply with our legal or regulatory obligations, or to comply with any other contractual, legal or regulatory obligations that we may become subject to.

 

In these circumstances, we will always ensure that those with whom your data is shared process it in an appropriate manner and take all necessary measures in order to protect it. We will only ever allow others to handle your personal data if we are satisfied that the measures which they take to protect that personal data are satisfactory and protected by contractual or statutory obligations and safeguards as strong as those held by us.

 

Please be aware that, from time to time, we may be required to disclose your personal data to, and exchange information about you or relating to you with, government, law enforcement and regulatory bodies and agencies in order to comply with our own legal and regulatory obligations.

 

We may also need to share some personal information with other parties, such as po-tential buyers of some or all of our business or during a re-structuring. Often, infor-mation will be anonymised, but this may not always be possible or convenient for the efficiency of the purposes described in this section. The recipient of the information will be bound by confidentiality obligations, and will also have to comply with your GDPR rights any time you wish to exercise them (see below ‘HOW TO ACCESS AND CONTROL YOUR PERSONAL DATA’).

 

This notice relates to your use of our website and electronic communications. Please note that our website may link to other third-party websites that may also gather information about you.

 

Third-party websites will operate in accordance with their own separate privacy policies, and we have no control over any personal data that they may acquire, store and use. For privacy information relating to these other third-party websites, you should consult their privacy policies as appropriate.

 

           

HOW YOUR PERSONAL DATA IS KEPT

 

Your personal data will be kept secure at all times.

 

We operate various security measures in order to prevent loss of, or unauthorised access, to your personal data. To ensure this, we restrict access to your personal data to those without a genuine business need to access it, and we have procedures in place to deal with any suspected data security breach.

 

We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. In this unlikely event, we will report all serious data breaches to the Information Commissioner’s Office (ICO) within 72 hours which result in the loss, release or corruption of Personal Data.

 

In addition, we take the following steps to protect your personal data:

 

  • Personal data that is processed by us will not be retained for any longer than is necessary for that processing, or for purposes relating to or arising from that processing.
  • Where your personal data is retained after we have finished providing our services to you, or where the contract with you has ended in any other way, this will generally be for one of the following reasons:
    • so that we can respond to any questions, complaints or claims made by you or on your behalf;
    • so that we are able to demonstrate that your matter was dealt with adequately and that you were treated fairly; or
    • in order to comply with legal and regulatory requirements.

 

In general, we will retain your data for only so long as is necessary for the various objectives and purposes contained in this notice. Please note, however, that different periods for keeping your personal data will apply depending upon the type of data being retained and the purpose of its retention.

 

INTERNATIONAL TRANSFERS NOTICE

So that we can provide and maintain our Service, your information, including Personal Data, is processed at the Company’s operating offices and in any other places where the parties involved in the processing are located. It means that this information may be accessed by and transferred to — and/or stored on — computers and by staff located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. Despite any differences in the regional or national laws, we will, in all circumstances, safeguard personal data as set out in this Privacy Notice.

 

Our business currently operates within the UK and the European Union. However, should we have to transfer personal data from the European Economic Area to a country outside the UK or EEA (or a country that is NOT considered as offering an adequate level of protection as adopted by the European Commission, Art. 45 of the GDPR), additional measures will be in place to safeguard the relevant personal data. Such transfer will be based on legal grounds and mechanisms justifying such transfer, such as EU Commission-approved standard contractual clauses, or other legal grounds permitted by applicable law, unless exempted by an adequacy decision (http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm). Please contact our Data Protection Officer on the contact details set out in this Privacy Notice if you want further information on the specific mechanism used by us if we ever need transferring your personal data out of the EEA.

 

 

COOKIES NOTICE

Cookies are created when you visit a website or use an app. They are small files that are stored on your device and used to customise your experience.

When you access our website for the first time, you will be asked to confirm your acceptance of cookies for this website.

 

To help you make your choices, our Cookies ‘Notice explains how we use cookies and similar technologies to collect information when you access our services and how we use that information. We also explain when and how you can manage your data. We highly encourage you to read our Cookies’ Notice in conjunction with our privacy notice and Terms & Conditions.

 

 

HOW TO ACCESS AND CONTROL YOUR PERSONAL DATA


Clients and individual data subjects have the right to access all information held about them to ensure that their personal data is accurate and relevant for the business purposes for which it was collected. Data protection legislation gives you, the data subject, various rights in relation to your personal data that we hold and process. Those rights are, in the main, set out in Articles 12–23 of the UK/EU GDPR:

  1. Right to be informed: Individuals have the right to be informed about the collection, use, and sharing of their personal data.
  2. Right of access: Individuals have the right to access their personal data and obtain copies of it.
  3. Right to rectification: Individuals have the right to correct or update their personal data if it is inaccurate or incomplete.
  4. Right to erasure: Individuals have the right to request the erasure of their personal data under certain circumstances, such as when it is no longer necessary for the purpose for which it was collected.
  5. Right to restrict processing: Individuals have the right to request that their personal data is not processed in certain ways, such as for marketing purposes.
  6. Right to data portability: Individuals have the right to receive their personal data in a structured, commonly used, and machine-readable format and to transfer it to another controller.
  7. Right to object: Individuals have the right to object to the processing of their personal data in certain circumstances, such as for direct marketing.
  8. Rights related to automated decision-making: Individuals have the right to request human intervention in decisions made solely by automated means, such as profiling.


If you want to review, verify, correct or request erasure of your personal data, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, you can contact us:

 

  • by post at: Data Protection team, Northwest Innovations Limited, Bentley Suite, The Motorworks, Chestergate, Macclesfield, Cheshire, United Kingdom, SK11 6DU.
  • by email at: [INSERT DATA PROTECTION EMAIL]

 

We may need to request specific information from you to help confirm your identity and ensure your right to access the information. This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it.

 

We will try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated, but we will always comply with Subject Access Rights Request’ timeframes recommended by the authorities.

 

You also have the right to make a complaint at any time to the Information Commissioner’s Office (“ICO”), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

 

 

CHANGES TO THIS PRIVACY STATEMENT

 

This privacy notice is current and accurately reflects our data handling practices. Please note that the terms and provisions of this privacy notice may be changed, updated and amended from time to time. These changes can arise, among other reasons, due to changes in legislation or our own business operational changes. We encourage you to check this page regularly, as changes can be introduced without notice.