GDPRPLAN.com Privacy Notice and Explanation of Data Processing

Welcome to the Privacy Notice page for GDPRPLAN.com.

Firstly, we want you to know that GDPRPLAN.com does not trade personal data for commercial purposes and will only disclose it if required by law, auditing, or with your consent. To reiterate this point we may mention this fact several times throughout our Privacy Notice.

We are a business to business solutions provider who also offer training and consultancy services and our Privacy Notice has been written in accordance with our obligations under the EU General Data Protection Regulation (Regulation (EU) 2016/679), the UK Data Protection Act 2018, and The Privacy and Electronic Communications (EC Directive) Regulations 2003.

We are registered with the Information Commissioner’s Officer under registration number ZA327771.

From hereon, any mention of the term (on this Privacy Notice) “the website” refers to GDPRPLAN.COM.

What GDPRPLAN.com does with data

GDPRPLAN.com collects personal data such as name and email address when you complete the form via the Contact Us page. By submitting an enquiry to us either via the form on the Contact Us page or via email or via telephone, this is demonstrating your unambiguous, explicit and freely given consent by you to receive contact from us. GDPRPLAN.COM does not trade personal data for commercial purposes and will only disclose it if required by law, auditing, or with your consent.

We have applied technical and organisational measures to protect personal data that we collect and process, even if the personal data that you submit via the form on the Contact Us page or by emailing us directly may be publicly available.

GDPRPLAN. com may collect personal data when you register for or apply for jobs through our website. The personal data collected may consist of information that you provide, such as your name, mailing address, e-mail address, telephone number, and (where applying for jobs) details about your previous work history.

When you send an email enquiry, you are giving your explicit, unambiguous and freely given consent for GDPRPLAN.com to contact you either in response to your enquiry or to send follow-up emails relating your enquiry. If you reply back stating that you do not wish to use our services then we will retain your data only for auditing, legal or security purposes.

GDPRPLAN.com will store the data that you’ve submitted with your enquiry – either via our Contact Us page or to us directly by email. If you do not wish to be contacted by GDPRPLAN.com then simply contact us with the subject header “REMOVE ME”, and include the email address that you are requesting to be removed from the database.

If we send direct marketing communications to clients (prospective, current or expended) this is done so in accordance with the Privacy Electronic Communications Regulation (Directive 2002/58/EC) as well as the EU GDPR and you have the right to object to your data being processed for direct marketing services, which you can do in writing via our Contact Us page with the subject header “REMOVE ME”, and include the email address that you are requesting to be removed from the database (every email sent will have the option for the recipient to unsubscribe/opt-out as well).

If you are a paying client and our partnership ceases to continue (for whatever reason), then, in the event of a tax or banking enquiry, we are required by law to keep on file your company details, including transactional information and contact information for 6 years after the first full financial year following termination of our agreement.

Website Visitors

GDPRPLAN.com uses Google Analytics to track the number of website visitors, pages visited, location (at Continent, Country and City level only), Device type, Screen Resolution, Operating System and time of visit.

We do not use Google (or any other media & advertising technology provider for that matter) for paid advertising, display advertising, social media or re-marketing services and only drive traffic to our site via the natural search listings or through any unpaid PR/interviews /editorial pieces.

Your IP address may be logged by Google but we never see this, and unless you use the Contact Us form; this is unlikely to be “personal data” (see Analytics section further down this page).

We delete the Contact Us form data when requested to do so by the data subject (unless we require the information by law, or for auditing purposes).

Cookies

We place small data files called cookies on your device. A cookie is a small text file that a website saves on your computer or mobile device when you visit the site.

How do we use cookies?

Analytics

The only cookies that we use are generated from Google Analytics, and as we do not use any paid marketing services that record information relating to your hobbies and interests, demographics browsing history, GDPRPLAN.com believes that it is fully compliant with Data Protection laws as the data is anonymised by Google and includes:

Number of visits to the website
Number of pages visited
Country and City that the visitor came from to the website
Operating System used to visit the website
Referring website of the visit to the website
Device used to access the website (i.e. a mobile, a desktop, or a tablet)
Screen size of the device that visited the website

You can read more about Google Analytics and the data they collect by visiting their Analytics page here.

How long we retain traffic stats

Our Google Analytics stores stats for a period of 14 months.

How to control cookies

You can control and/or delete cookies as you wish – for details, see aboutcookies.org. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit certain websites (not this one however) and some services and functionalities may not work.

What rights you have over your data

You have the right to be informed of what information we hold about you and what we do with your data.

You also have the right to restrict processing of your data but as we do NOT trade personal data for commercial purposes your data is only exchanged between us and you, unless you authorise us to share with another service provider if we cannot fulfil your business requirement (we will always ask your permission first).

If you have emailed us or submitted an enquiry using the form on our Contact Us page, you can request that we erase any personal data we hold about you, however – this does not include any data we are obliged to keep for legal, auditing or security purposes.

If any data we have for you is incorrect, please let us know and please inform us of the corrections to be made so that we can update our systems accordingly.

Where we send your data

Visitor comments to blog posts are checked through an automated spam detection service.

What third parties we receive data from

Google Analytics, but this is only for tracking volumes of traffic and pages visited to our website (as we’ve explained under the “Analytics” section of this page).

What automated decision making and/or profiling we do with user data

We don’t.

Industry regulatory disclosure requirements

GDPRPLAN.com is registered with the UK Information Commissioner’s Office, registration no: ZA327771

If you have a data protection query please contact:

Micky Khanna, Founder, GDPRPLAN.com

E: micky@gdprplan.com

This Privacy Notice was updated on April 27th 2019.