Privacy and Cookie Policy

Privacy Notice

The information you give us by completing forms on our website or by corresponding with us by phone, e-mail or otherwise may include the following:

  • Your name, address, email and phone number
  • The personal details of a third party.

This information is used by Briteweb to keep in contact with you in relation to the services we provide. We will not use this information for anything else.

Consent

By consenting to this privacy notice you are giving us permission to process your personal data specifically for the purposes identified. Consent is required for Briteweb to process both types of personal data, but it must be explicitly given. Where we are asking you for sensitive personal data we will always tell you why and how the information will be used.

You may withdraw consent at any time by contacting Briteweb by telephone, email or in writing using the contact information below.

Email: info@briteweb.co.uk

Address: Briteweb, 96a Old Turnpike, Fareham, Hampshire PO16 7HW

Telephone: 07954 179776

Briteweb will not pass on your personal data to third parties without first obtaining your consent.

Retention

We retain your personal information for as long as is required to fulfil the services we provide. activities set out in this privacy policy. At the termination of a contract between you and Briteweb, we will delete your personal information after a period of no more than 12 months unless you request otherwise.

For the General Data Protection Regulation, the data controller is Briteweb of 96a Old Turnpike, Fareham, Hampshire PO16 7HQ. We may from time to time use data processors who are not employees, agents or otherwise connected with us with whom we have an agreement to process your data.


We take your data privacy very seriously

Briteweb know how to recognise a Verbal subject access request and we understand when the right of access applies. We have a policy for how to record requests we receive verbally.

Briteweb will document any verbal request through the data controller and they will proceed to handle the request as soon as possible.

Briteweb understand when we can refuse a request and are aware of the information we need to provide to individuals when we do so.

Briteweb will respond to the request immediately in writing.

Briteweb understand the nature of the supplementary information we need to provide in response to a subject access request.

Briteweb will only provide supplementary information in line with the request.

Briteweb have processes in place to ensure we respond to a subject access request without undue delay and within one month of receipt.

Briteweb will document details of all requests and will respond within a month of the request.

Briteweb are aware of the circumstances when we can extend the time limit to respond to a request.

Briteweb have the process to extend the time limit in certain circumstances

Briteweb understand what needs to be considered if a request includes information about others.

Briteweb will only release information relating to others when it is within the circumstances that all parties are aware of the shared information.*******

Briteweb know how to recognise a request for rectification and understand when this right applies.

Briteweb will upon a request for rectification, immediately deal or within a month the duly asked data rectification change.*******

Briteweb know how to recognise a request for erasure and we understand when the right applies.

Briteweb will upon a request for deletion or erasure, immediately deal or within a month the duly asked data erasure.*****

Briteweb understand that there is a particular emphasis on the right to erasure if the request relates to data collected from children.

Briteweb do not keep any records relating to children especially those under  13.

Briteweb have procedures in place to inform any recipients if we erase any data we have shared with them.

Briteweb have a process to inform any clients of data erasure.

Briteweb have appropriate methods in place to erase information.

Briteweb have a protocol to make sure of all data deletion of a certain recipient.  ******

Briteweb know how to recognise a request for restriction and we understand when the right applies.

Briteweb know how to restrict information relating to a recipient.

Briteweb understand the circumstances when we can process personal data that has been restricted.

Briteweb will only process information or data under certain circumstances.

Briteweb have procedures in place to inform any recipients if we restrict any data we have shared with them.

Briteweb have a policy to follow a guideline to inform recipients of restriction of shared data.

Briteweb understand that we need to tell individuals before we lift a restriction on processing.

Briteweb will document to individuals before we lift restriction on processing.

Briteweb know how to recognise a request for data portability and we understand when the right applies.

Briteweb will use data portability only in a safe and scheduled manner.

Briteweb can transmit personal data in structured, commonly used and machine-readable formats.

Briteweb organises, controls, and transmits all data with all secure and safeguarding manners relating to all formats of data.

Briteweb use secure methods to transmit personal data.

Briteweb use encrypted and secure layers od protection with all data

Briteweb have processes in place to ensure that we respond to a request for data portability without undue delay and within one month of receipt.

Briteweb will ensure data potability is actioned within a Month of a request.

Briteweb are aware of the circumstances when we can extend the time limit to respond to a request.

Briteweb have the process to extend the time limit in certain circumstances

Briteweb know how to recognise an objection and we understand when the right applies.

Briteweb have a process to recognise an objection and will respond to the matter in the right way.

Briteweb have a policy in place for how to record objections we receive verbally.

Briteweb will document all verbal objections as soon as possible and within a month of receiving a complaint.

Briteweb understand when we can refuse an objection and are aware of the information we need to provide to individuals when we do so.

Briteweb will document our refusal to an objection and take the duly action or no action as required.

Briteweb have clear information in our privacy notice about individuals ‘right to object, which is presented separately from other information on their rights.

Briteweb understand when we need to inform individuals of their right to object in addition to including it in our privacy notice.

Briteweb have appropriate methods in place to erase, suppress or otherwise cease processing personal data.

Briteweb has a safe and secure data structure in place at all times.

Briteweb undertake an analysis of the risks presented by our processing, and use this to assess the appropriate level of security we need to put in place.

When deciding what measures to implement, we take account of the state of the art and costs of implementation.

We have an information security policy (or equivalent) and take steps to make sure the policy is implemented.

Where necessary, we have additional policies and ensure that controls are in place to enforce them.

We make sure that we regularly review our information security policies and measures and, where necessary, improve them.

We have put in place basic technical controls.

We understand that we may also need to put other technical measures in place depending on our circumstances and the type of personal data we process.

We use encryption and/or pseudonymisation where it is appropriate to do so.

We understand the requirements of confidentiality, integrity and availability for the personal data we process.

We make sure that we can restore access to personal data in the event of any incidents, such as by establishing an appropriate backup process.

We conduct regular testing and reviews of our measures to ensure they remain effective, and act on the results of those tests where they highlight areas for improvement.

Where appropriate, we implement measures that adhere to an approved code of conduct or certification mechanism.

We ensure that any data processor we use also implements appropriate technical and organisational measures.


third party cookies

We only use third party cookies to see who visits our site including google analytics, maps and webmaster. We do not collect any of your personal information via this website.