Privacy Policy
Introduction
It is important to us to be transparent and clear in how we handle personal data, i.e., information relating to identifiable living individuals. In the UK, the Data Protection Act 2018 and the UK General Data Protection Regulations govern the way that organisations use personal data. The purpose of this policy is to inform you how and why we use your personal data, your rights under these data protection laws, and how to contact us so that you can exercise those rights.
We’ll keep this policy under regular review and any changes will be posted here (and, where appropriate, notified to you by email or post).
We are TechGC Limited, a company registered in England and Wales with company number 16363559 whose registered office is at Victory House, Vision Park, Chivers Way, Cambridge, Cambridgeshire, England, CB24 9ZR. We are the “data controller” in respect of the personal data that we collect and use as described in this policy and we are registered with the UK Information Commissioner’s Office (ICO) accordingly.
Information we may collect
For our legitimate business purposes only, we may collect various personal information from you, including: your name and contact details; relevant information relating to your business or organisation; and records of your correspondence with us.
Our website, designed on and hosted by Squarespace, only uses strictly necessary cookies. It does not use targeting cookies or any other tracking technologies.
How we use your information
We will use your personal information to provide advice and services to you, in accordance with your instructions and the mutually agreed scope of our work as set out in an engagement letter from us, or otherwise in writing. The legal basis for processing your personal information is therefore that it is necessary to fulfil a contract that we have with you.
Sharing your personal information
We would not share your personal information with any third party unless:
you have consented to us doing so; or
we are under a professional, legal, or regulatory obligation to do so, or we are otherwise required by law; or
we have an appropriate contract in place with a third-party service provider that provides services to our business for a legitimate business purpose (e.g., IT services; financial or payment services; fraud protection services; sanctions compliance services).
Security
We have implemented administrative, technical, and physical safeguards to protect all information and data relating to our clients, including their personal information. We use Microsoft 365 for our enterprise IT and data storage, which has built in measures to protect against cyber threats and loss of data.
Data retention
We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, and for compliance purposes. We will retain client files for seven years after which we may delete them.
Your rights
Under the data protection laws mentioned above, you have the following rights in relation to your personal data that we hold:
the right of access and portability;
the right to rectification (where data is inaccurate or incomplete);
the right to erasure (unless data retention is required by law or to fulfil compliance or professional obligations);
the right to restriction (in some circumstances you may restrict us from using your personal data);
the right to object to our processing of your personal data; and
the right to non-discrimination for exercising your rights described above.
If you wish to exercise any of these rights, or if you have any queries at all in relation to our use of personal data, please contact Chris by email to chris@techgc.co.uk.