Keeping our customer’s data safe and secure is one of our top priorities. Below we will outline how we collect, process and store the personal date of our customers, clients and suppliers ensuring your personal data is safeguarded and respected at every step of the way.
Please note that all the information below may not apply to you. We have explained below an overview of all possible situations and one or more of these may apply to you as a customer, client or supplier of Inclusive Play.
Who are we?
Inclusive Play (UK) Ltd is responsible for the personal data that you share with us. When we say “Inclusive Play”, “us”, “our” or “we” this is who we are referring to. Inclusive Play is the “data controller” for the purposes of applicable data protection laws.
- Company Name: Inclusive Play (UK) Ltd
- Website Address: inclusiveplay.com
- Company Registration Number: SC301254
- Head Office: Suite 49, 1-3 St Colme Street, Edinburgh EH3 6AA
- Registered Address: 9 Ainslie Place, Edinburgh, EH3 6AT
- Telephone: 0131 214 1180
- Email: firstname.lastname@example.org
What is personal data?
Personal data means any information which could identify you either directly or indirectly. This includes, but is not limited to; your name, email/home address, usernames, profile pictures, financial information, Curriculum Vitae, health records or IP address.
What data might we collect from you?
Website Users/Prospective Customers
- Information you submit through forms on our website or emails sent direct to us
- A record of any correspondence between us
- Details of your enquiry
- Email address and telephone number
- Bank details
- A record of the correspondence between us
- A record of the transactions between us
- Copies of appropriate contracts in place between us
Under GDPR we will ensure that your personal data is processed lawfully, fairly and transparently without adversely affecting your rights. We will only process your personal data if at least one of the following applies:
- You have given consent to the processing of your personal data for one or more specific purposes
- Processing is necessary for the performance of the contract to which you are a party or to take steps at the request of you prior to entering into a contract
- Processing is necessary for compliance with a legal obligation to which we are subject
- Processing is necessary to protect the vital interests of you or another person
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority
How do we use what we collect?
We use the information we collect about you in the following ways:
- Provide information, products and services that you request or (with your consent) which we think may be of interest to you
- Manage our contracts with you
- Comply with specific legal obligations
If you are an existing customer and you don’t want to be contacted for marketing purposes, please let us know at email@example.com.
If you are a new customer, you will be only contacted for marketing purposes if you agree to it.
How do we store your data?
All customer, client and supplier information may be transferred to, accessed in, and stored at, a destination outside the European Economic Area (EEA). It may also be processed by staff operating outside the EEA who work for us or for one of our service providers.
For further information please contact us.
How long do we keep your personal data?
We will keep your personal data for as long as we need it to provide you with your requested service(s) or to meet our commercial or legal obligations.
To determine the retention period of your personal data, we consider the below criteria to make sure we do not keep your data for longer than necessary or appropriate.
- The purpose for which we hold your personal data
- Our legal and regulatory obligations in relation to that personal data e.g. financial reporting obligations
- Whether our relationship with you is ongoing
- Any specific requests from you in relations to the deletion of your personal data
- Our legitimate business interests in relation to managing our own rights, for example the defence of any claims
We will conduct an annual review to ascertain whether we need to keep your personal data, when it is decided that we no longer need it will be deleted or be anonymised so that you can no longer be identified from it.
Is my personal data secure?
Inclusive Play are committed to keeping your personal data secure and take all reasonable precautions to do so. We contractually require our trusted third parties who handle your personal data for us to do the same.
We will always do our best to protect your personal data and once we have received your data we use strict procedures and security features to prevent unauthorised access. As no transmission of information via the internet is completely secure, we cannot guarantee the security of your personal data transmitted by you through our website. Any transmission is therefore done at your own risk.
What are my rights?
You can ask us at any time to not use your data for marketing. You can do this by unsubscribing via a mailer, ticking the relevant box on our forms or by contacting us direct at firstname.lastname@example.org.
Under GDPR you have the right to:
- Access and receive a copy of any personal data we hold about you
- To rectify any personal data which is incorrect, outdated or incomplete
- In some cases, to have your personal data erased or deleted; this is not an absolute right as there may be legal or legitimate grounds for retaining your personal data
- Be informed of what data processing is taking place
- Withdraw consent at any time for any personal data processing based on consent
- Object to the processing of your personal data
- Complain to a supervisory body
Please note that our terms and conditions and our policies will not apply to other websites which you may reach via a link from our site. We have no control over how your data is collected, stored or used by other websites and we advise you to check the privacy policies of any such websites before providing any data to them.
What if we change this policy?