The EU General Data Protection Regulation (GDPR), which was enforceable from 25 May 2018, provides new rights to individuals and requires organisations to provide information about their processing in a clear and transparent way. We have published this updated Privacy Statement to take into account new requirements and to explain how we collect, store and use personal data.
When we refer to ‘we’, ‘us’ or ‘our’ we mean Emberson Consulting Ltd.
WHO IS EMBERSON CONSULTING LTD?
Emberson Consulting, part of the Emberson Group, specializes in positioning, branding and messaging for clients in the energy and industrial sectors. Our company registration number is 07500609. Our VAT registration number is 223 8355 14. Our ICO registration number is ZA061372.
This Privacy Statement applies to personal data collected by Emberson Consulting Ltd and processed at our registered offices: 37 Great Pulteney Street, Bath, BA2 4DA UK and under contract at the sites of service providers appointed by us. Emberson Consulting Ltd, as a Data Controller and a Data Processor, is committed to protecting the privacy of our clients and subscribers. We endeavour to comply with the Data Protection Act 1998, the EU General Data Protection Regulation (GDPR), the Privacy and Electronic Communications (EC Directive) Regulations 2003 (amended) and other relevant legislation.
HOW TO CONTACT US
If you have any questions about this Privacy Statement or would like to contact us about any other matter, please use the following contact information:
Registered Office Address: 37 Great Pulteney Street, Bath, BA2 4DA UK
Telephone: +44 (0)1225 686266
HOW WE COLLECT PERSONAL DATA THROUGH OUR WEBSITE
The only way we can collect personally identifiable information through our website is if you provide this via a contact form or registration form along with your consent.
We’d also like to let you know that we use two pieces of software on our website: Google Analytics and Lead Forensics.
Google Analytics is used to collect standard internet log information and details of visitor behaviour patterns. We use this data to see how our website is performing and on occasion manually cross reference visitor data from Lead Forensics.
Lead Forensics uses reverse business IP tracking. A small tracking code is placed on our website which enables us to identify the business IP address of some of our website visitors. This only identifies business data subject information.
HOW WE COLLECT PERSONAL DATA IN OTHER WAYS
We also collect data in the following ways:
1. Face to face, for example at an event
2. Over the telephone or Skype
3. Via desk research looking at publicly available information (for example as provided on your own company website or LinkedIn, and other social platforms).
WHAT DO WE DO WITH YOUR PERSONAL INFORMATION?
Emberson Consulting publishes articles, thought leadership pieces and marketing communications on subjects such as positioning, branding, content, marketing and sales that we believe to be of interest to businesses wanting to transform their business and increase their return on investment.
If you provide your data and give us permission, we will use your data to maintain email, social media, telephone and offline contact with you using the legal basis of Consent under PECR and GDPR.
We may also contact you through the legal basis of Legitimate Interest, where we believe our marketing communications will be of interest to you in your role at your business contact details. We have a Legitimate Interest Assessment process in place and have balanced our need to process data with your rights and have assessed that your rights are not outweighed by ours. We always give you an easy option to opt out of our communications, should you wish to do so.
WHAT PERSONAL DATA DO WE COLLECT?
We only collect data which is necessary to provide our marketing communications. Namely: first name, last name, email address, job title, company name, telephone number, business address.
HOW LONG DO WE KEEP YOUR DATA FOR?
We will only retain personal data for as long as is necessary for the purposes we are using it for. How long we retain data will vary depending on the purposes it is used for. We routinely update our email newsletter lists to ensure those who are not engaged are removed.
YOUR RIGHTS REGARDING YOUR PERSONAL DATA
You have a number of rights under data protection law, which have been strengthened under the General Data Protection Regulation (GDPR):
Access: You have the right to access the personal data we may hold about you and the purposes for which we are using it. We may ask for proof of your identity. On receipt of such a request we will endeavour to respond to you as soon as possible, at most within one calendar month.
Rectification: You have the right to request that we amend any personal data which is incorrect or requires updating.
Erasure: You have the right to request that we delete any personal information pertaining to you. We will assess any deletion request on a case by case basis and will endeavour to respond to you as soon as possible, at most within one calendar month. Please note when you unsubscribe from communications we will not normally completely erase all of your details, but suppress them, to ensure you are not contacted again in future. If you prefer to be erased completely from our files, please do let us know.
If you would like to exercise any of these rights, please contact us using the following contact details:
Address: 37 Great Pulteney Street, Bath, BA2 4DA, UK.
Telephone:+ 44 (0)1225 686266.
WHERE DO WE PROCESS DATA?
We (and third-party processors appointed by us and under contract) process data in the United Kingdom. Some of these processors may be outside the EEA. We do not pass your data to third-parties for them to process for their own means, only to process the data on our behalf according to our instructions.
We apply UK data protection law to our processing.
HOW DO WE KEEP DATA SECURE?
We take appropriate steps to maintain our contact information in a secure environment to prevent unauthorised use. Our processors are bound by contract to do the same.
In addition, Emberson Consulting has the Cyber Essentials accreditation, which is assessed and renewed annually by our IT support partner, IMEX Technical Ltd.
If you follow links to other sites from our website your data will be subject to the privacy policies of those sites. You should refer to these policies before providing your data.
UPDATES TO THIS STATEMENT
We review and update this Statement regularly to take account of changes to our processing and regulatory changes. We encourage you to review it from time to time. If we make any significant changes to this Statement, we will endeavour to communicate this to you where possible.
IF YOU WISH TO COMPLAIN
If you have a complaint about how we have processed your data, we would ask you to please contact us in the first instance so that we may take steps to remedy the issue.
You are of course also entitled to refer your complaint to the Information Commissioner’s Office.
HOW YOU CAN REACH US
Emberson Consulting Ltd, 37 Great Pulteney Street, Bath, BA2 4DA.
Tel + 44 (0)1225 686266
Last updated December 2018.