Privacy Policy

Think Information Technology Ltd (“Think IT”), a private limited company registered in England with registered number 04014966, takes the protection of your privacy very seriously.

This Privacy Policy, together with any other terms and conditions published on our website (including our Data Protection Policy and our Terms & Conditions), set out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.

Please read the following carefully to understand our approach to processing your personal data.

General information

This Privacy Policy sets out how we use and protect your personal data for various purposes (including marketing and communications, and delivery of services). This includes data which we obtain from you for updates that we send by email or telephone, the use of our website, and events which you attend where such information is provided.

For the purposes of UK data protection legislation, we are the data controller for personal data where:

• you have agreed to receive marketing and communications information from us;
• you have accessed our website;
• you have agreed to receive services from us;
• we provide updates to you about services you have agreed to receive from us;
• you have registered for, attended and/or taken part in events where your personal data is required or provided; and/or
• you have expressed an interest in working with us.

Any personal data which we collect, record or use in any way whether it is held on paper, on computer or other media complies with the General Data Protection Regulation (“GDPR”), the Data Protection Act 2018, and any other applicable data protection law in the United Kingdom.

How do we collect information from you?

We obtain information about you when you engage us to deliver services and/or when you use our website, for example, when you contact us about our services.

What type of information do we collect from you?

The information we collect from you will vary depending on which services we deliver to you. The personal data we collect might include your name, address, telephone number, email address, and bank account details. For certain services, we may also need details of your IT system(s), including passwords, port numbers and general system setup.

How is your information used?

We will only use your personal data to deliver or enhance the services you receive from us and to meet our legal responsibilities.

In general terms, and depending on which services we deliver to you, as part of providing our agreed services we may use your information to:

• contact you by post, email or telephone;
• verify your identity where this is required;
• understand your needs and how they may be met; and
• maintain our records in accordance with applicable legal and regulatory obligations.

We may be required by legislation, other regulatory requirements or our insurers to retain your personal data after our delivery of services to you has ceased. The period of retention required varies with the applicable legislation but is typically five or six years. To ensure compliance with all such requirements it is our policy to retain all data for a period of seven years from the end of the period concerned.

Who has access to your information?

We will not sell or rent your personal data to third parties.

We will not share your personal data with third parties outside of our group for marketing purposes.

Any Think IT staff with access to your personal data have a duty of confidentiality under the ethical standards that we are required to or choose to follow.

Third party service providers

We may pass your information to third party service providers, agents, subcontractors, software providers, cloud services and other associated organisations for the purposes of completing tasks and providing services to you on our behalf, for example, bookkeeping.

We disclose only the personal data that is necessary to deliver the relevant service(s) and we have one or more agreements in place that require third parties to keep your personal data secure and not to use it for other purposes.

We will also pass your information to third parties where we are required to do so by law, for example, by a court order or for the purposes of prevention and detection of crime, fraud or corruption.

How you can access and update your information

Keeping your information up to date and accurate is important to us. We commit to regularly review and correct where necessary, the information that we hold about you.

For more information about your rights, including your right to access and update your personal data, see ‘your rights’ below.

If any of your information changes, please email us, write to us, or call us, using the contact information noted below.

Security

Whilst we strive to protect your personal data, we cannot guarantee the security of any information you transmit to us or that we transmit to you, and such transmission takes place at your own risk.

Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given, or where you have chosen, a password which enables you to access information, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.

Your data will usually be processed in our offices in the UK. We take the security of your data seriously and so all our systems have appropriate security in place that complies with all applicable legislative and regulatory requirements.

We do not guarantee that any email sent to us will be received or that the contents will remain private during transmission. If you are concerned about this please consider other means of communication. You are responsible for ensuring any electronic message or information you send to us is free from any virus or defect that may harm our systems in any way.

For more information about the security controls that we put in place to maintain the security of your personal data, check our Information Security Policy.

Your choices

We may occasionally contact you by post, email, telephone or via our website with details of any changes in legal and regulatory requirements or other developments that may be relevant to your affairs and, where applicable, how we may assist you further.

If you do not wish to receive such information from us, please let us know by contacting us using the contact information noted below, or where appropriate using ‘unsubscribe’ options.

Your rights

You have the right to:

• access to your personal data: You have the right to request a copy of the personal data about you that we hold;
• correct your personal data: You have the right to ask us to correct any personal data about you that we hold that you believe is not correct or complete;
• request deletion of your personal data: You have the right to ask us to delete personal data about you where:
  • you consider that we no longer require the personal data for the purposes for which it was obtained;
  • you have validly objected to our use of your personal data – see ‘object to how we may use your personal data’ below; or
  • our use of your personal data is contrary to law or our other legal obligations
• restrict how we may use your personal data: In some cases, you have the right to ask us to restrict how we use your personal data. This right might apply, for example, where we are checking the accuracy of personal data about you that we hold or assessing the validity of any objection you have made to our use of your personal data. The right might also apply where there is no longer a basis for using your personal data but you do not want us to delete the data. Where this right is validly exercised, we may only use the relevant personal data with your consent, for legal claims or where there are other public interest grounds to do so; and
• object to how we may use your personal data: Where we use your personal data to perform tasks carried out in the public interest then, if you ask us to, we will stop using that personal data unless there are overriding legitimate grounds to continue.

If you elect to receive our email marketing newsletters we may also from time to time, contact you by email about seminars, workshops, other events, publications or services, which we think will be of benefit to you. You may at any time request us to stop using your personal data in this way by contacting us as using the contact information noted below, or where appropriate using ‘unsubscribe’ options.

You can find more information in our Data Protection Policy.

Think IT website

Our website is managed by us and by our UK-based web development company. You may visit our site without revealing any personal data. However, if you request specific information, provide feedback, participate in a marketing initiative or express interest in working with us you will be disclosing personal data to us. This will be treated in accordance with the principles set out in the General Data Protection Regulation (GDPR), the Data Protection Act 2018 and any other applicable data protection law in the United Kingdom.

Our website uses cookies. A cookie is a small text file stored in your computer containing text data. We use cookies for certain functions to improve the usability of the website. These cookies do not contain any personal data about you. However, enabling cookies in your web browser is necessary if you wish for any selections to be remembered for future visits on the same computer. Most web browsers allow some control of most cookies through the browser settings. For more information about cookies and instructions on how to adjust your browser settings to restrict or disable cookies, please check our Cookie Policy and/or the IAB website at www.allaboutcookies.org.

Our website uses Google Analytics to help analyse how our visitors use the site. The tool uses cookies to store information, such as what time the current visit occurred, whether the visitor has been to the site before, and what site referred the visitor to the web page. A different cookie is used for each website, and visitors are not tracked across multiple sites. The information generated by the cookie about your use of the website (including IP address) is transmitted to Google. This information may then be used to evaluate visitors’ use of the website and to compile statistical reports on website activity for Think IT.

To disable this type of cookie, some browsers will indicate when a cookie is being sent and allow you to decline cookies on a case-by-case basis. In addition to declining cookies, you can also install the Google Analytics Opt-out Add-on in your browser, which prevents Google Analytics from collecting information about your website visits. For more information see Google’s article about the Opt-out Add-on.

We will never (and will not allow any third party to) use the statistical analytics tool to track or to collect any personal data of visitors to our site. Google will not associate your IP address with any other data held by Google. Neither we nor Google will link, or seek to link, an IP address with the identity of a computer user. We will not associate any data gathered from this site with any personal data from any source, unless you explicitly submit that information (e.g. via a fill-in form on our website).

Think IT are committed to the protection of personal data supplied by users of our site. We are not responsible for the privacy policies of third party sites to which links are provided. The privacy policies on such sites should be checked before providing any personal data.

Email

Think IT uses third party services to manage and store email data, including:

• Microsoft 365: we use Microsoft 365 as our email server, and your personal data will be processed by this system. For more information check Microsoft 365 data protection information.
• Mailchimp: we use Mailchimp to process personal data for email marketing purposes. For more information check Mailchimp data protection information.
• Sendinblue: we use Sendinblue to process personal data for email service update purposes. For more information check Sendinblue data protection information.

Changes to our Privacy Policy

We keep this Privacy Policy under regular review and will place any updates here.

This version of the Privacy Policy was updated on 14 April 2021.

Contact information and complaints

In the first instance, please refer any privacy queries or complaints to:

• Paul Hancock (Commercial and Security Director)
• Think Information Technology Ltd, 1 Colleton Crescent, Exeter, Devon, EX2 4DG
• Telephone: 01392 435803
• Email: Paulh@thinkit.co.uk

We seek to resolve directly all complaints about how we handle your personal data but you also have the right to lodge a complaint with the Information Commissioner’s Office at:

• Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
• Telephone: 0303 123 1113 (local rate) or 01625 545 745
• Website: https://ico.org.uk/concerns