Privacy Policy
Our contact details
Name: Argylestone Consulting Ltd
Address: 320 Firecrest Court, Centre Park, Warrington, Cheshire, WA1 1RG.
E-mail: GDPR@Argylestoneconsulting.co.uk
Our ICO registration number: is ZB422861
The type of personal data we collect
We currently collect and process the following personal data:
- Personal identifiers, contacts and characteristics. This includes: names, titles, addresses, contact details (telephone and email). Our legal basis for processing this personal data is for the performance of a contract between Argylestone and its clients.
- User information. This includes information about your use of the Argylestone website, Argylestone YouTube channel, Argylestone LinkedIn account or other social or professional networking sites or channels through which we interact with our clients and potential clients. Our legal basis for processing this personal data is the legitimate interest we have in maintaining and administering our website and other online services.
- Technical data. This includes IP addresses, length of time spent on the Argylestone website, page views and other analytics and information relating to your access to and use of the Argylestone website. Our legal basis for processing this personal data is our legitimate interest in administering our website properly and growing our business.
- Marketing data. This includes your preferences for receiving marketing information from us and your communication preferences. We process this data to deliver relevant materials, information, events, content or advertisements to you. Our legal basis for processing this personal data is either that you have consented, or that we are pursuing our legitimate interest of growing our business and marketing our company to existing and potential clients.
We do not collect or process any special category data, nor do we carry out any automated decision-making or profiling.
How we receive personal data and why we have it
Most of the personal data we process is provided to us directly by our clients, either by filling in a form, or sending us an email, or phoning us, or attending one of our events or seminars. Our clients provide this personal data to us so that we can provide one of more of Argylestone’s services to our clients and prospective clients.
Services include:
- Change management
- Process improvement
- Compliance advice
- Strategic business guidance
- Project management
- Software development
- Software consulting
- Staffing solutions
Our clients may also share with us personal data relating to their own customers, consumers or users in order for us to provide Argylestone’s services to our clients. Where this happens, we act as a data processor and not a data controller. Our clients are the data controller for this personal data.
We may share personal data – that we have collected directly, or that has been shared with us by clients – with any employees or directors of Argylestone, or any sub-contractors engaged by Argylestone to support delivery of its services to clients. Any sub-contractors engaged by Argylestone are required to comply with all applicable data protection legislation as it relates to processors and/or sub-processors.
Under the UK GDPR (which is the UK’s implementation of the EU General Data Protection Regulation into national law), the lawful bases we rely on for processing personal data are:
- Your consent. You are able to withdraw your consent at any time. You can do this by contacting GDPR@Argylestoneconsulting.co.uk or
- We have a contractual obligation to process your personal data; or
- We have a legitimate interest in doing so.
Marketing communications
We do not market our services to individual consumers. Argylestone only offers its services to other companies (though some of our clients and potential clients may be considered individual consumers under the Privacy and Electronic Communications Regulations (PECR)).
We may send you marketing communications if:
- you have previously engaged Argylestone to provide you with one or more of its services;
- you have provided us with your personal data in order to attend events, seminars, webinars or access other similar content that we have developed;
- you have asked (via our website, email, phone or a social media platform) for information about our services; or
- you have specifically agreed to receive marketing communications
and in any of these cases, you have chosen not to opt-out of receiving such communications.
You can opt out of receiving marketing emails from us at any time by emailing GDPR@Argylestoneconsulting.co.uk
If you opt out of receiving marketing communications, this opt-out does not apply to personal data we process under other lawful bases.
We will not share your personal data with any third party for their own marketing purposes.
How we store your personal data
Your information is securely stored in locked premises (if physical files or information), or on local network and cloud-based storage, on laptops and PCs and on our email servers (for information stored electronically). All electronic storage locations are password protected and/or encrypted.
We will only retain your personal data for as long as necessary to fulfil the purposes which we have collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, age, accuracy and sensitivity of the information, the potential risk of harm from unauthorised use or disclosure, the purposes for which we process your personal data and whether we can achieve those purposes through other means.
We keep personal data that we have collected directly from our clients for two (2) years, unless we are required by law to retain the data for longer periods. For example, in order to comply with financial reporting, tax and social security obligations, we retain information relating to contracts, services we deliver and payments we receive from clients for 6 years.
We keep personal data that has been shared with us by our clients for the time periods specified in our contractual arrangements with those clients, or for one (1) year if there is no time period specified.
In some circumstances you can ask us to delete your personal data and we recommend you read the section relating to your data protection rights for further information.
We dispose of your personal data using secure methods such as physical or electronic shredding.
Your data protection rights
Under data protection law, you have rights including:
- Your right of access – You have the right to ask us for copies of your personal information.
- Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
- Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.
- Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.
- Your right to object to processing – You have the right to object to the processing of your personal information in certain circumstances.
- Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you. Please contact us at GDPR@Argylestoneconsulting.co.uk if you wish to make a request.
How to complain
If you have any concerns about our use of your personal information, you can make a complaint to us at GDPR@Argylestoneconsulting.co.uk
You can also complain to the ICO if you are unhappy with how we have used your data. The ICO’s address is:
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Helpline number: 0303 123 1113
ICO website: https://www.ico.org.uk