RIGHTHERE

Legal

Privacy Policy

This statement explains how we collect, use, transfer and store your personal data. We would encourage you to read this information.

Privacy Notice

This privacy notice explains how RIGHTHERE collects and processes your personal information. We would encourage you to read this information.

It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements the other notices and is not intended to override them.

We may change this privacy notice from time to time. You should check this notice occasionally to ensure you are aware of the most recent version. It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes during your relationship with us.

How Can You Contact Us?

We have appointed a Data Protection Manager to oversee compliance with this privacy notice. If you have any questions about this privacy notice or how we handle your personal information, please contact the Data Protection Manager by completing our enquiry form or by writing to: Data Protection Manager, Steve Hull, Workbench, 15 Neptune Court, Vanguard Way, Cardiff, CF24 5PJ.

If you do not think that we have processed your data in accordance with this notice you should let us know as soon as possible. You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

Links To Other Websites

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. When you leave our website, we encourage you to read the privacy notice of every website you visit as we do not control those.

What Data Do We Collect?

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

We may collect, use, store and transfer different kinds of personal data about you (and about any other person you include on your booking) which we have grouped together as follows:

  • Identity Data includes your name, title, date of birth, and gender.
  • Contact Data includes your address, email address and telephone numbers.
  • Sensitive Data includes information concerning medical conditions, disabilities, and trade union membership.
  • Financial Data includes bank account and payment card details.
  • Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
  • Profile Data includes your purchases or orders made by you, your interests, preferences, feedback, survey and promotional responses.
  • Usage Data includes information about how you use our website, products and services.
  • Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.

We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy notice.

Apart from the Sensitive Data referred to above, we do not collect any other Special Categories of Personal Data about you (this also includes details about your race, sex life, sexual orientation, political opinions, religious or philosophical beliefs, and information about your genetic and biometric data).

Information About Other People

During the course of our relationship we will potentially have access to information about your team, your employees, and/or your suppliers and partners. You are responsible for ensuring you have permission to share their personal data with us.

What We Do With Your Data

It's important that you understand what we'll do with the data that we hold about you.

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • Where we need to perform the contract we are about to enter into or have entered into with you.
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Where we need to comply with a legal or regulatory obligation.

Generally, we do not rely on consent as a legal basis for processing your personal data other than in relation to the collection and use of Sensitive Data and sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.

Cookies

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

Sharing Your Data

We may have to share your personal data with external third parties including those set out below:

  • Management Service Partners who provide administrative services and undertake management reporting.
  • Organisations to which we may outsource certain of our activities, such as printing, mailing and distribution services.
  • Organisations that provide customer identity and address verification services.
  • Organisations doing research for us.
  • Organisations for the detection, investigation and prevention of crime, such as the National Crime Agency in respect of money laundering.
  • Financial organisations for purposes such as payment processing, finance plans and refunds.
  • Third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy notice.
  • Professional advisers acting as processors or joint controllers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

During the course of our relationship we may, with your prior agreement, pass on your personal details to third party suppliers of business services in order to fulfil our contract with you.