AJS Operating Company Ltd (The Company)
The company is the ‘Data Controller’ for the purposes of data protection law.
The company’s Data Protection Officers details are provided at the end of this policy.
We aim to communicate in a clear and concise language that is understandable to our likely audience and age group. If there is anything that you feel is unclear or you do not fully understand, please contact us for more information at the contact details given at the end of this policy.
We only collect the minimum personal information that is needed to provide our services, and to avoid contact or transactions with age groups outside of our intended customer base.
Any details inadvertently received from age groups outside of our intended market will not be held by us for any longer than is reasonably necessary to erase the data.
This information may include:
We collect and hold personal information provided by you through our online forms, from emails you respond to which we may send (which you have consented to or is within our legitimate interest as an existing customer), from pages that you visit on our website(s) or from general communications you make with us.
We collect third party (suppliers and service providers) information when we first use their services. We will only collect third party data that is essential to the companies operation and where we are legally required to do so.
Any data you provide will be held by us until we no longer legitimately require or use the data. This requirement and use is defined as:
When we no longer use or have a legitimate requirement for your data, or you withdraw your consent, we will erase all your data from our records and you will receive no further contact from us. All electronic data will be purged from our file storage system and any paper data will be shredded. This will be completed as soon as reasonably possible, but within 30 days as a maximum, except where we are legally required to hold the data for longer.
Data relating to commercial transactions, such as a purchase from us, are required by law to be kept by us for 6 years.
We will store your data in a commonly used machine readable format, which is access code protected.
We will not sell, barter or rent your data.
Except in the provision of a commercial transaction you have entered into with us, we will not share your data unless compelled to by law.
When fulfilling a commercial transaction with you, we will only share the minimum amount of personal data necessary to complete the transaction, with any third parties.
How your personal information is used
We will only collect and use your information when the law allows us to.
We use two legal basis to collect, store and process your data:
At any time if you would like to ‘opt-out’ or withdraw previously given consent, you can do so by contacting the Data Protection Officer at the contact details given at the end of this policy. Our marketing emails also contain unsubscribe links.
Cookies and Analytics
Our website and electronic communications may include links to third parties which are used to help us process your data, but only for the purposes identified within this policy. We are not responsible for the privacy policies and practices of any third party to whom we work with, but we do use reasonable endeavours to ensure that any third parties we use are also GDPR compliant.
You have the following rights:
You can find out what (if any) personal information we hold about you, and how we use it, by making a ‘Subject Access Request’ to the Data Protection Officer at the contact details given at the end of this policy.
When requested, except where there is a lawful reason to withhold the information, we will:
International Information Transfers
We only work with third parties that we can reasonably trust to process data outside the European Economic Area. We keep shared data to the minimum necessary and review the privacy policies of those third parties with which we work.
We operate and may work with third parties outside of the European state. Our registered office and administration centre is based in the UK and the lead Data Protection Supervisory Authority in the UK is the Information Commissioners Office (ICO).
We will take any complaints about how we collect and use your personal data very seriously, please let us know if you think we have done something wrong.
You can make a complaint at any time by contacting our Data Protection Officer at the contact details given at the end of this policy.
You can also complain to the Information Commissioner’s Office in one of the following ways:
Report a concern -
online at https://ico.org.uk/concerns/
Tel: +44(0)303 123 1113
Or write to:
Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
If you have any requests concerning your personal information or any queries with regard to these practices, please contact the Data Protection Officer (DPO), Mr A. J. Spencer, via our email: CEO@AJSOpCo.com
or Alternatively you can post a request to:
AJS Operating Company Ltd
44 Jefferson Drive
East Riding of Yorkshire