☎ 0151 263 8966
Sales Team

Data Policy for Built In Kitchen Appliances Ltd

1. Introduction

Built In Kitchen Appliances Ltd (referred to as "the Company") is committed to protecting the privacy and security of personal data in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This data policy outlines the principles and practices the Company follows to manage and protect data.

2. Scope

This policy applies to all employees, contractors, partners, and third parties who have access to the Company’s data, including personal, corporate, and customer data. It covers all forms of data collection, storage, usage, and sharing.

3. Data Collection

The Company collects data to improve its services and products. This includes:

  • Personal Data: Names, addresses, email addresses, phone numbers, and payment information.
  • Usage Data: Information on how our products and services are accessed and used.
  • Technical Data: IP addresses, browser type, and operating system.

Additionally, we may request your name and email address for future marketing purposes. This information is used exclusively by Built In Kitchen Appliances Ltd and is never shared with third parties, except with our marketing service providers that enable us to send you future correspondence.

4. Lawful Basis for Processing

The Company processes personal data based on one or more of the following lawful bases:

  • Consent: The individual has given clear consent for processing their personal data for specific purposes.
  • Contract: The processing is necessary for a contract with the individual, or because they have asked the Company to take specific steps before entering into a contract.
  • Legal Obligation: The processing is necessary for compliance with a legal obligation.
  • Legitimate Interests: The processing is necessary for the Company's legitimate interests or the legitimate interests of a third party, provided these interests are not overridden by the individual's data protection rights.

5. Data Usage

Collected data is used for:

  • Enhancing customer service and support.
  • Processing transactions and delivering products.
  • Personalizing user experience.
  • Improving our products and services through analysis.
  • Marketing and promotional communications, where consent has been obtained.

6. Data Storage and Security

The Company ensures that:

  • Data is stored securely using encryption and other industry-standard security measures.
  • Access to data is restricted to authorized personnel only.
  • Regular security audits are conducted to identify and mitigate risks.
  • Data is retained only as long as necessary for the purposes outlined or as required by law.

7. Data Sharing

The Company may share data with third parties only when:

  • It is necessary for the delivery of our products and services.
  • It is required by law or to protect our rights and property.
  • Consent has been given by the data subject.

While the Company does not share personal data with third parties for their marketing purposes, we do share information with our marketing service providers to enable them to send you future correspondence on our behalf.

8. Data Transfers Outside the UK

When transferring personal data outside the UK, the Company ensures that:

  • The destination country has an adequate level of data protection as determined by the UK government.
  • Standard Contractual Clauses or other appropriate safeguards are in place.

9. Data Subject Rights

Individuals have the following rights regarding their personal data:

  • Access: To request a copy of their data.
  • Rectification: To request correction of inaccurate or incomplete data.
  • Erasure: To request deletion of their data under certain conditions.
  • Restriction: To request the restriction of data processing.
  • Portability: To receive their data in a structured, commonly used format.
  • Objection: To object to data processing based on legitimate interests or for direct marketing purposes.
  • Automated Decision-Making: To request human intervention in automated decisions.

Requests to exercise these rights should be directed to the Company’s Data Protection Officer (DPO).

10. Data Breach Notification

In the event of a data breach, the Company will:

  • Notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach, if required.
  • Notify affected individuals without undue delay if there is a high risk to their rights and freedoms.

11. Training and Awareness

The Company will provide regular training to employees on data protection principles and practices. Employees are required to follow this policy and report any breaches or potential risks to the DPO immediately.

12. Policy Review and Updates

This policy will be reviewed annually or when significant changes occur in the Company’s operations or applicable laws. Updates will be communicated to all relevant parties.

13. Contact Information

For questions or concerns about this data policy or data protection practices, please contact the Company’s DPO:

Data Protection Officer
Built In Kitchen Appliances Ltd
33-35 Belmont Road
L6 5BG