PURPOSE OF THIS NOTICE
This notice describes how we collect and use personal data about you, in accordance with the latest Data Protection Regulations (including General Data Protection Regulation (GDPR)).
Deacon’s is a firm of chartered accountants regulated to carry on audit work in the UK and Ireland, regulated for a range of investment business activities, and authorised to carry out the reserved legal activity of non-contentious probate in England and Wales by the Institute of Chartered Accountants in England and Wales.
For the purpose of the Data Protection Legislation and this privacy notice, we are the ‘data controller’. This means that we are responsible for deciding how we hold and use personal data about you. We are required under the Data Protection Legislation to notify you of the information contained in this privacy notice.
Sandra Deacon is our Data Protection Officer (DPO) and is responsible for assisting with enquiries in relation to this privacy notice or our treatment of your personal data.
HOW WE COLLECT YOUR PERSONAL DATA
We obtain personal data about you when you initially engage us and on an ongoing basis as services are provided. The data may be collected by email, telephone and post, and sometimes from publicly available resources on the internet.
THE KIND OF PERSONAL DATA WE HOLD ABOUT YOU
The personal information we collect from you will vary depending on which services you engage us to deliver. The personal information we collect may include your name and/or address, telephone number, Unique Tax Reference, National Insurance No, email, bank account details, photo ID (for Money Laundering Legislative purposes).
HOW WE MAY USE YOUR DATA
Generally and depending on the services we are engaged to deliver, we may use your information to:
Contact you by post, email or telephone;
Verify your identity where this is required;
Carry out our obligations arising from any agreement entered into between us (which will most usually be for the provision of our services);
Understand your needs and how they may be met;
Advise you of changes in legislation and/or new services that could be relevant to you, provided that your interests are not overridden;
Maintain our records in accordance with applicable legal and regulatory obligations;
Prevent and detect crime, fraud or corruption.
We will only retain your personal data for as long as we consider it is necessary to fulfil the purposes for which it is collected and where it is compatible with your future needs.
When assessing what retention period is appropriate for your personal data, we take into consideration that the type of services that are provided and statutory and legal obligations.
When we no longer act for you, we reserve the right to retain your data where we are required to do so by legislation and by our insurers.
We will only share your personal data with third parties where we are required by law or where you have given us permission, including outside the European Economic Area (EEA), if part of our contract with you.
We have in place security measures to prevent data from being accessed in an unauthorised way. Our staff who process your data are subject to a duty of confidentiality.
Should we suspect a breach of our security measures we will notify you and the Information Commissioners Office and any applicable regulator where we are legally required to do so.
You have the right to:
- Request a copy of the personal information that we hold or for it to be corrected if inaccurate.
- Request erasure of your personal data – this enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it.
- Request the transfer of your personal data to you or another data controller if the processing is based on consent.
Object to or restrict the use of your personal data for example where your personal situation has changed or you do not wish your personal data to be used for direct marketing purposes.
If you want to exercise any of the above rights please email Sandra Deacon at email@example.com.
CHANGES TO THIS NOTICE
Any changes we may make to this notice will be updated on our website.
This privacy notice was last updated on 24 May 2018.
If you have any questions regarding this notice or if you would like to speak to us about the manner in which we process your personal data, please email our Sandra Deacon at firstname.lastname@example.org or call 01799 543453. Our address is The Stables, Shipton Bridge Farm, Widdington, Saffron Walden, Essex CB11 3SU.
We would seek to resolve directly any complaints however you also have the right to make a complaint to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues, at any time. The ICO’s contact details are as follows:
Information Commissioner's Office
Telephone - 0303 123 1113 (local rate) or 01625 545 745
Website - https://ico.org.uk/concerns