This policy was last updated: [01/05/2018]
This policy explains how Swift IT Computer Services Ltd will handle the privacy of your information. We are committed to maintaining robust privacy protections for all our users. We will take the necessary steps to ensure that user’s information is safeguarded and kept in accordance with all applicable data protection laws and regulations.
What information do we collect?
The information that you provide us with is collected from any online details given and processed in accordance with UK legislation.
Information you provide to us:
Blog: We use Twitter to publish our blog and anonymous information to track users’ activity in relation to the blog. If you wish to post a comment on the blog, you will be asked to give your name and email address. Email addresses do not appear publicly.
Contact: We have a Contact Form and this is used to collect your name, email and phone number as well as your message, so that we can contact you and provide details of our services to you and deal with general company enquiries. Data is held on the grounds of being legitimate to our business interests.
Phone calls: Phone calls to us may be recorded and any data relating to the call may be retained by us. The data will be held on the basis of being for our legitimate business needs or in order to fulfil our contractual obligations if you are a client of ours.
Social media: We use social media to engage with users and the Swift IT Computer Services Ltd website links to our Facebook, Twitter and LinkedIn pages. We do not keep any specific data that identifies you as an individual user, but hold details of our followers on these platforms. You should refer to the Privacy Policies of these channels to understand how they treat your data in relation to linking to our site.
Testimonials: We may ask for your permission to publish your comments in relation to services we have provided to you. If we choose to publish these on our website or other promotional material, we will not publish any personal data that identifies you individually.
Information we get from other sources
From time to time, we may need to obtain information from third parties about you. This will only apply where it is necessary to provide our services and as permitted by law.
How we use your personal information
Your information will be used by us to enable us to provide our services to you. We act as a Data Controller (see below) of your information and undertake to protect your personal and sensitive data in a manner that is consistent with the requirements of the General Data Protection Regulation (GDPR). We will take reasonable measures to ensure the secure storage of your data.
- administer the website;
- improve your browsing experience by personalising the website;
- follow up with email enquires;
- send you general (non-marketing) communications;
- send you email notifications which you have specifically requested;
- send to you marketing communications, where expressly agreed;
- provide third parties with statistical information about our users - but this information will not be used to identify any individual user;
- ask for feedback and reviews;
- deal with enquiries and complaints made by or about you relating to the website.
Users of this website do so at their own discretion and provide any such personal details at their own risk.
We may disclose your personal information if we are required to do so by law, in connection with any legal proceedings, and in order to establish, exercise or defend our legal rights, or if otherwise legally permitted.
We use a third party company called ConnectWise to manage and deliver our service additionally we use products from Teamviewer to deliver some remote and ad-hoc support services. The Privacy Policies for these partners is available at:
We may use Data Processors who act on our instruction in relation to the management of your data and they must adhere to all data protection laws and regulations. We will ensure that any Data Processors used only operate on our written instructions and comply with their obligations under the GDPR.
You will be informed of any other Data Controllers who have access to your data and who may determine processing activities separately to us, or as a Joint Data Controller.
We will only send you emails about our services, i.e. direct marketing, with your express consent. You have the option not to give consent and to withdraw consent at any time. You may withdraw your consent for us to contact you by contacting us at email@example.com.
Non-personally identifiable visitor information may be provided to third parties for marketing, advertising or other uses.
Swift IT Computer Services Ltd cannot guarantee or verify the contents of any externally linked website and users click on external links at their own risk. Swift IT Computer Services Ltd and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.
Social media platforms
Communication, engagement and actions taken through external social media platforms that this website and its owners participate on are subject to our terms and conditions as well as the privacy policies held with each social media platform respectively.
Users are advised to use social media platforms wisely and communicate and/or engage with them with due care and caution in regard to their own privacy and personal details. This website nor its owners will not ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.
Swift IT Computer Services Ltd uses social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised that before using such social sharing buttons, that they do so at their own discretion, and should consider that the social media platform may track and save requests to share a web page, through the users’ social media platform account.
Legal basis for processing
We will ask for your consent if we need to process your personal data in circumstances including:
- For Marketing our Services and Promotions
Separate consent is not required in the following circumstances:
- For the performance of a contract.
To perform our contractual obligations to you, including fulfilling orders or purchases you have made, contacting you in relation to any issues with your order or use of the services, in relation to the provision of the services, or where we need to provide your personal data to our service providers related to the provision of the services.
- To comply with legal obligations.
To comply with laws, regulators, court orders, or other legal obligations.
- Legitimate Interests.
Legitimate interests may include:
- To communicate with you regarding the services, including to provide you with important notices regarding changes to our terms and to address and respond to your requests, enquiries and complaints.
- To send you surveys in connection with our services.
- To assist in the investigation of suspected illegal or wrongful activity, and to protect and defend our rights and property, or the rights or safety of third parties.
- To develop, provide, and improve our services.
You may at any time withdraw your consent to the processing of your personal data by contacting us by email to firstname.lastname@example.org.
Retaining your data
We keep your personal information in accordance with our Data Retention Policy which reflects our needs to provide services to you as contracted and also as required to meet legal, statutory and regulatory obligations. The need to hold information is regularly reviewed and information/data will be disposed of when no longer required.
Our website is hosted by Heart Internet. Any information that you supply to us may be stored and processed by our servers located inside European Economic Area, or any other country that provides suitable and adequate security measures to protect the data. Your data may be transferred in accordance with the relevant data protection laws.
Data Subject Rights:
Subject Access Requests
The General Data Protection Regulation (GDPR) gives individuals, known as ‘data subjects’, the right to access personal data that is held by organisations by a subject access request (SAR). We will endeavour to respond quickly to any such requests, which legally require us to respond within one month of receiving the request and necessary information. To make a SAR request email us at email@example.com
Right to Rectification
Data subjects have the right to request that we amend or change personal information that we hold about you, that is inaccurate or incorrect.
Right to erasure
Data subjects have the right to ask us to delete personal information from our systems without giving any reason and at any time. We will act on any request without delay.
Right to restrict processing
Data subjects have the right to rectification or erasure of personal data in the following circumstances:
- Personal data is not accurate;
- The processing of data is unlawful - data subjects may request that processing is restricted;
- Data is required to exercise legal rights or defend legal claims;
- Data is unlawful but there may be lawful grounds for processing, which override this right.
Right to data portability
Data subjects have the right to obtain and transfer their data to different service providers.
Right to object
Data subjects have the right to object to the processing of data at any time based on their particular situation. This includes objecting to profiling unless it is in the ‘public interest’ or exercised lawfully by an official authority. We will only process data under lawful grounds.
Right not to be subject to decisions based on automated processing
We do not use any automated processing that results in any automated decision based on a data subject’s personal information.
Using your rights
If you wish to invoke any of these rights, you can email us at firstname.lastname@example.org
We will report any unlawful breach of data as required by the GDPR within 72 hours of the breach occurring, if it is considered that there is an actual, or possibility, that data within our control including the control of our data processors, has been compromised. If the breach is classified as ‘high risk’ we will notify all data subjects concerned using an appropriate means of communication. We will report any relevant breaches to the ICO, see below.
Cookies are small files saved to the user’s computer hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server, to provide the user with a tailored experience when navigating the website. Session cookies may be used to validate your access to different parts of the website.
Cookies we use
The Cookies we use are shown in this table below.
Google Analytics Cookies
Region capture, time on site, pages viewed on our site.
Guidelines for the processing and handling of data is available from the Information Commissioner’s Office, the UK supervisory authority on data protection, see ico.org.uk.
Information is also available at www.ec.europa.eu/ipg/basics/legal/cookies/index_en.html.
Questions and queries
If you have any concerns about how we handle your data, you can contact the Data Controller by email to email@example.com
Changes to this policy
If you want to raise a concern about the use of your data, you can contact us by email to firstname.lastname@example.org. Alternatively, you can formally raise a concern or complaint to the Information Commissioner’s Office (ICO) directly on 0303 123 1113, or see the options for reporting issues on https://ico.org.uk/concerns/
Third Party Rights
Jurisdiction and Governing Law
© 2018 Swift IT Computer Services Ltd | Privacy and Cookies Policy v1