At Bench Architects we are committed to safeguarding your privacy and respecting your privacy rights. We may have to collect and use information about people with whom we work. This personal information must be handled and dealt with fairly and in accordance with the requirements of the General Data Protection Regulation (GDPR) and the UK Data Protection Act. This policy sets out how we collect, use and protect any data you share with us, along with the rights you have regarding your data.
“Personal data” is information that relates to an identifiable person who can be directly or indirectly identified from that information, for example, a person’s name, identification number, location, online identifier. It can also include pseudonymised data.
“Data processing” is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Types of data we collect
We use a third-party service, Google Analytics, to track and report traffic on our website. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website. To find out how Google collects and processes date, visit https://policies.google.com/technologies/partner-sites?hl=en-GB&gl=uk.
When you contact us via email, telephone or any other method of communication, we may collect some of your personal details, such as:
- Your name
- Organisation name
- Telephone / mobile number
- Job title
- Email Address
Why we collect this data
- To administer our website and business,
- To enable your use of the services available on our website,
- To deal with enquiries and complaints made by or about you relating to our website and other services,
- To keep our website secure and prevent fraud,
- To inform you about our services,
- To send you non-marketing commercial communications,
- To contact you if we need to obtain or provide additional information,
- To check our records are up to date.
Disclosing your data
We may disclose your personal information to any of our employees, officers, insurers, professional advisers, agents, suppliers or subcontractors insofar as reasonably necessary for the purposes set out in this policy:
- To the extent that we are required to do so by law,
- In connection with any ongoing or prospective legal proceedings,
- In order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk).
Except as provided in this policy, we will not, without your express consent, supply your personal information to any third party for the purpose of their or any other third party’s direct marketing. We do not share or trade email lists with other organisations and businesses.
Under GDPR, all personal data obtained and held by us must be processed according to a set of core principles. In accordance with these principles, we will ensure that:
- processing will be fair, lawful and transparent,
- data be collected for specific, explicit, and legitimate purposes,
- data collected will be adequate, relevant and limited to what is necessary for the purposes of processing,
- data will be kept accurate and up to date. Data which is found to be inaccurate will be rectified or erased without delay,
- data is not kept for longer than is necessary for its given purpose,
- data will be processed in a manner that ensures appropriate security of personal data including protection against unauthorised or unlawful processing, accidental loss, destruction or damage by using appropriate technical or organisation measures,
- we will comply with the relevant GDPR procedures for international transferring of personal data.
How long we keep your data for
Under GDPR, personal data shall be kept for no longer than is necessary for the purposes for which it is being processed.
You are entitled to view, amend, or delete the information that we hold about you. If you wish to do so, email firstname.lastname@example.org. Please inform us if this information needs to be corrected or updated.
You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). In addition you have a right to complain to us and to the UK’s data protection regulator, the Information Commissioner. However, we would appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.