You are here: Home Blog ATC Updates GDPR: What is it and how does it affect you?
As you may be aware, the new General Data Protection Regulation (GDPR) is due to come into law on 25th May 2018. In summary, any business who processes data relating to any European Economic Area resident will need to comply with these new regulations which govern how data is processed and stored.
As a valued customer of Anglia Tool Centre, we want to ensure that you are aware of changes that we are making to our terms and conditions in light of this new law.
Anglia Tool Centre, as a UK based company, is currently governed by the laws of England and Wales which reference the UK Data Protection Act 1998. This will be superseded by GDPR and it is important that our terms and conditions reflect this law change.
What Data Do Anglia Tool Centre Collect?
We currently collect data relating to customer names, business names, telephone numbers, email addresses, delivery addresses and invoice addresses to assist us in processing and delivering your orders.
We also keep information relating to past orders and products you purchase so that we can supply copy invoices if our customers need them and provide relevant marketing news to those customers who have opted-in to receiving this type of information.
The information we collect and store allows us to deliver a higher level of service to our customers and to assist in protecting customers against fraud and, as such, will be held for as long as you remain a registered customer of Anglia Tool Centre (or until you expressly ask us to remove your data from our systems).
Who Can Access The Data Which Anglia Tool Centre Collects?
Anglia Tool Centre is a member of the Ridgeons Group of companies and, as such, may share your data with other members of the group.
These companies include Ridgeons, Plumbstock, Ridgeons Forest Products and Midlands Tool Show.
How Do Anglia Tool Centre Store Data?
All customer data is stored, across our multiple systems, on secure data servers and every care is taken to protect your information against misuse or breach by external forces.
Anglia Tool Centre will never store your payment information in any of our systems. For information on the way that partner companies handle your data, please see the links below:
Will Anglia Tool Centre Share Data Externally?
The information you share with us will never be passed to any person outside of the Ridgeons Group (our parent company) unless your permission is expressly given and, even then, only in instances where the sharing of that data will benefit you. This may include sharing your contact details with manufacturers for the purpose of tool repairs and sharing your data with courier companies to process your deliveries. Your data will never be shared with third party companies for advertising or marketing purposes.
What If I Want Anglia Tool Centre To Remove My Information From Their Systems?
All requests to remove your information from our systems should be directed to firstname.lastname@example.org where they will be processed within 30 days of receipt of your request.
This data will be removed from our daily systems and held in a recycling folder (unless manually removed) for 30 days, after which time it will be permanently deleted.
Any concerns or queries about this process should be sent to email@example.com.
How Can I Find Out If I’ve Allowed Anglia Tool Centre To Collect & Share My Data?
When you create an online account with Anglia Tool Centre, some of your data is automatically stored on our system to allow us to process your order.
While certain data is required to allow us to complete and fulfill your order, we provide customers with the option to opt-in or opt-out of receiving marketing communications by email and by post.
Unless you have given us permission to do so, your details will not be used for marketing and will not be shared with third parties unless their involvement is integral to the order process.
What If We Suspect A Breach Of GDPR has Taken Place?
If Anglia Tool Centre discover a breach has taken place we will notify the Information Commissioner’s Office (ICO) within 72 hours of the breach being discovered. If the breach is likely to result in a high risk of adversely affecting an individual’s rights and freedoms, we will also notify the individual involved without undue delay.