Monolith Property Solutions Ltd

Local Handyman - Derby

Privacy Notice

Privacy Notice

Nov 2020


Acronyms 

ICO: International Commissioners Office

DPO: Data Protection Officer

MPSL: Monolith Property Solutions Ltd

IP: Internet Protocol

GDPR: General Data Protection Regulation

UK: United Kingdom

EU: European Union

CCTV: Closed Circuit Television

OS: Operating System

Company Details 

Name: M. Grummett

Registered Office: Twelve Quays House, Egerton Wharf, Wirral, England, CH41 1LD

Registered in England & Wales. No. 11725568

Phone Number: 07753354139

Email: monolithpropertysolutionsltd@gmail.com

Website: monolithpropertysolutionsltd.com

ICO guidance has determined that a ‘DPO’ is not applicable (ref, ICO online assessment tool). 


Introduction 

MPSL believes it is important to respect the privacy of individuals & we only use your information, provided by you, to provide services to you.

This privacy notice provides an overview of how we manage your personal information. Information provided by you, generally through our website.

Prior to submitting your details, you will have reviewed this privacy notice.


What Type Of Information We Receive

We receive information you have submitted to us, primarily this will be via our website online submission form, or our other contact details on our website (email address or telephone number).

Details we receive via our online submission form, should you use this option:

 

  • Your first name

  • Your surname

  • Your email address

  • Your phone number (optional)

  • Your project requirement ie a brief outline

  • Possibly your IP address & web stats

 

Details we would require, should you not use our website online submission form.

Received via your email or telephone contact:

 

  • Your first name

  • Your surname

  • Your email address

  • Your phone number

  • Your project requirement ie a brief outline

 

Should the project/work progress:

  • Your postal address

  • Possibly your payment details (depending on the method of payment)


How We Receive Information & Why We Receive It

Personal information we process is provided to us by you, via our website submission form or other contact details displayed on our website.

 

It is primarily received for one of the following reasons:

 

  • To discuss your project requirement

  • To arrange a quotation site visit

  • To provide a quotation

  • To facilitate a site visit

  • To provide an invoice

  • To facilitate payment

  • To facilitate delivery of large parts, goods or consumables, related to your project

  • To address issues or concerns

 

Under the General Data Protection Regulation (GDPR), the lawful basis we rely on for processing this information is ‘contract’.

Determined using ICO lawful basis online assessment tool.

‘Contract’ covers submission of your details by you, ie a request by an individual, as the first step prior to entering into a contract. 


What We Do With The Information We Receive

We use the information that you have given us, in order to progress your enquiry. Examples of tasks we may need your information for are: 

 

  • To provide further information

  • To provide a quotation

  • To discuss your project

  • To decline your project request

  • To provide advice

  • To conduct a site visit

  • To provide an invoice

  • To facilitate payment

 

Primarily information you supply is solely for the use of MPSL & will not be shared.

However should a specialist element need to be sub contracted to a 3rd party ie gas safe engineer for an element of a kitchen installation. Unless you wish to arrange this aspect yourself, selective details may need to be provided, to the specialist 3rd party, with your agreement. Which you would do in any case, should you arrange this aspect directly yourself.

For the outlined example, selective information would be supplied to a UK sub contrator, via email, in order to re-enforce their GDPR obligations, relating to your information.

For the purposes of this privacy notice, direct information is considered to be information you provide directly to us on a one to one basis ie by telephone, no other parties involved ie no email provider/s involvement.

Should email provider/s be involved, information would then be considered indirect. Note information submitted via the website online submission form, would also be considered indirect information. 

We do not directly share information outside of the UK/EU. Indirectly your information may reside in a location outside of the UK/EU ie our website or email provider may have server locations across the world.

This may also be the case for your email provider, relative to our information.

 

For example, our current website provider states:

 

‘Wix can store your site-visitors' data in a number of locations.

Your site-visitors ́ personal information may be stored in data centers located in the United States of America, Ireland, South Korea, Taiwan and Israel. We may use other jurisdictions as necessary for the proper delivery of our services and/or as may be required by law’.

Exert from Wix website Jan 2020.

 

How We Store Your Information 

We make every effort to protect the personal information, you give directly & indirectly to us. 

Parties involved in the supply of indirect information, will also be governed by GDPR or similar world policies. 

Unfortunately no multi chain supply process, can be considered totally risk free, due to the number of parties involved. Additionally you & your providers, add to the chain.

Your information is securely stored on electronic devices, at a UK location not related to the registered office. The location is not described for security reasons.

Security measures at this location include: 24/7 CCTV, alarm system. Devices are secured within a lockable safe.

Two step authentication/login is employed wherever possible ie for Chromebook device, for email provider etc.

The physical backup device is encrypted for additional data security (FIPS 140-2 level 3) & is GDPR compliant.

Chromebook OS is used due to its secure nature ie automatic updates, sandboxing, verified boot & data encryption.

Cloud based storage may also be used for backup purposes. Providing a backup, that is location independent. Your files are encrypted, prior to storage with our cloud provider. 

Use of accounting software, may also promote the use of a cloud based service.

Whilst we strive to protect your personal information in our direct possession, unfortunately we cannot guarantee the security of any information being transmitted to or from us. However we minimise risk wherever possible, by utilising reputable providers ie website or email providers.

We endeavour not to keep paper records of your information. 

We retain personal information for as long as necessary, to fulfil our Company legal obligations. A Companies required retention period is generally 7 years. Therefore any Company document, which may contain your personal information ie a quotation, invoice, email etc will be retained until year 8.

After disposal authorisation is received, documentation will be deleted from the physical device & backup using the appropriate OS.

In the unlikely event that a paper copy exists, this will be securely shredded at year 8.

The website provider online submission form, creates a record of the details you submit to us online. This database is cleared monthly, using the website providers deletion method.


Your Data Protection Rights

Via GDPR, you have the following rights.

However the ICO details, that some rights are not applicable, relative to which lawful basis is used/defined.

To see which rights are available to you, relative to the previously defined lawful basis ‘contract’, please use ICO link: 

https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/lawful-basis-for-processing/

 

Your Right Of Access

You have the right to ask us for copies of your personal information. 

For further information:

https://ico.org.uk/your-data-matters/your-right-to-get-copies-of-your-data/

 

Your Right To Rectification

You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete. 

For further information:

https://ico.org.uk/your-data-matters/your-right-to-get-your-data-corrected/

 

Your Right To Erasure

You have the right to ask us to erase your personal information in certain circumstances. 

For further information:

https://ico.org.uk/your-data-matters/your-right-to-get-your-data-deleted/

 

Your Right To Restriction Of Processing

You have the right to ask us to restrict the processing of your information in certain circumstances.

For further information:

https://ico.org.uk/your-data-matters/your-right-to-limit-how-organisations-use-your-data/

 

Your Right To Object To Processing

You have the right to object to the processing of your personal data in certain circumstances.

For further information:

https://ico.org.uk/your-data-matters/the-right-to-object-to-the-use-of-your-data/

 

Your Right To Data Portability

You have the right to ask that we transfer the information you gave us to another organisation, or to you, in certain circumstances.

For further information:

https://ico.org.uk/your-data-matters/your-right-to-data-portability/

 

There is no charge for exercising your applicable rights, relative to the previously defined lawful basis. However a reasonable fee can be charged, should the request be manifestly unfounded, excessive, repetitive & charges may also be applied for duplicate copies. 

We will process your request after successful ID verification, & endeavour to respond/comply with your request within the required 1 month window. The time period may be extended to 2 months for more complex requests.

Note! The 1 month response window, starts after successful verification of your identity. Identity verification is required for your protection, to prevent your data being obtained by others, wishing to exploit GDPR procedure. Failure to attempt to confirm identification, would in itself, be a GDPR breach.

 

We make every attempt to progress your request in a timely & efficient manner. Should a request be applicable, please email:

monolithpropertysolutionsltd@gmail.com


How To Complain

You can also complain to the ICO, if you are unhappy with how we have used your information.

The ICO’s address:            

Information Commissioner’s Office

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF

 

Tel: 0303 123 1113

 

Above privacy notice based upon ICO guidance & ICO privacy notice template: pn-template-microbusiness-201908.docx

Cookies

Introduction

Our website uses cookies.

Insofar as some cookies are not strictly necessary for the provision of our website and services, we will ask you to consent to our use of cookies when you first visit our website.

Credit

This document was created using a template from Docular (https://seqlegal.com).

About Cookies

A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

 

Cookies That We Use

Our site uses (a) & may use (b, c & d):

(a) Essential Cookies- These cookies enable core functionality such as security, verification of identity and network management. These cookies cannot be disabled;

(b) Marketing Cookies - These cookies are used to track advertising effectiveness to provide a more relevant service and deliver better ads to suit your interests. These cookies can be disabled via the cookie control banner;

(c) Functional Cookies - These cookies collect data to remember choices users make to improve and give a more personalised experience. These cookies can be disabled via the cookie control banner;

(d) Analytic Cookies - These cookies help us to understand how visitors interact with our website, discover errors and provide a better overall analytics. These cookies can be disabled via the cookie control banner.

Cookies Used By Our Service Providers

Our service providers may use cookies and those cookies may be stored on your computer when you visit our website.

We use Wix to host our website. This service uses cookies for site security, Wix platform analysis-monitoring (performance, operation, effectiveness) & for an enhanced customer/visitor experience. You can view the privacy policy of this service provider at https://www.wix.com/about/privacy.

Managing Cookies

Cookie selections are made via the cookie control banner. Alternatively, most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:

(a) https://support.google.com/chrome/answer/95647 (Chrome);

(b) https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences (Firefox);

(c) https://help.opera.com/en/latest/security-and-privacy/ (Opera);

(d) https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies (Internet Explorer);

(e) https://support.apple.com/en-gb/guide/safari/manage-cookies-and-website-data-sfri11471/mac (Safari); and

(f) https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy (Edge).

 

Blocking some cookies may have a negative impact upon the usability of a website.

Cookie Preferences

You can change your preferences relating to the use of cookies on our website after clearing your browser history, by visiting: https://www.monolithpropertysolutionsltd.com.

 

Additional To Creditor Content

To Inspect Cookies Found On Our Website

To view cookies on our site use incognito mode, this is the method outlined by Wix (https://support.wix.com/en/article/cookies-and-your-wix-site). 

History

First issued: Jan 2020

Iss 2: Nov 2020 - Cookie policy added to Privacy Notice.