EU General Data Protection Regulation (GDPR)
The new EU General Data Protection Regulation
(GDPR) came into effect on the 25/05/2018 and has a significant impact on how organisations, such as
Think Security Systems Limited. collect, manage and process personal data.
Think Security Systems Limited. are aware of their legal and regulatory responsibilities under the applicable
privacy laws and the new GDPR, and is fully
committed to protecting the privacy and
confidentiality of our customers in compliance
with these new rules.
We at Think Security Systems Limited. are focusing our efforts on GDPR compliance. In doing so, we have carried out a full review of our internal security and privacy policies. We are also continuously evaluating the requirements imposed by GDPR and are currently in the process of implementing the measures and practices necessary to ensure compliance with these new requirements.
Point of ContactThink Security Systems Limited. have setup a dedicated point of contact for enquiries relating to Data Protection and GDPR, you can contact us at firstname.lastname@example.org Think Security Systems Limited. Registered Office: Unit 4 Posterngate Business Park, Harts Lane, South Godstone, Surrey, RH9 8LZ Telephone: 01342 477 447 Email: email@example.com
What information do we collect?Think Security Systems Limited. is committed to protecting the privacy of all customers, suppliers and all other contacts. Any and all information collected is used purely to enable services provided. We will not communicate with you unless you expressly request it and will not share, sell or divulge any personal information without your permission. We collect information when you place an order for our services and we may send some details on to our suppliers or partner companies to fulfil your order. We may collect personal information which we receive when you: use our services; are a recipient of our services or when you contact us. We may collect the follow types of information: your name, company name, your position in the company, company address, email address, telephone numbers and other contact details you supply about yourselves or your customers; video information from CCTV recording systems at our sites for security and safety reasons; information required to provide you with a service, and details of our services that you have used; your payment information and details of any enquiry or complaint. We also store this information to manage your account and to allow monitoring services of some systems we have installed for you. When processing your order, we may send your details to, and use information from, credit reference agencies and fraud prevention agencies. We want to make sure that your personal information is accurate and up to date. You may ask us to correct or remove information you think is inaccurate. We only store information for as long as it is required for the purposes of our works. The 3rd party systems where we hold your information are: Drop box KPI SSAIB Surrey Police Southern Monitoring Mercury Software (Alarm Manager) MailChimp We collect personal information in the following ways: directly from customers; from third parties who use our services; when services are provided together with a partner company and information is collected by the partner company in order for us to provide you with the services.
How do we use your personal information?When you use the website, Think Systems may collect certain information about you as described in this Policy. The information can be divided into information that you provide and information that Think Systems collects. When you use the website, Think Systems may collect certain information about you as described in this Policy. The information can be divided into information that you provide and information that Think Systems collects. Personal information we collect include internet traffic data, such as IP and data collected through cookies, such as number of user visits, the time period of visiting, and user preferences. Think Systems uses your personal information for the following purposes: For Think Systems’ legitimate interest, namely: to respond to your enquiries to increase the safety of websites, such as user authentication, security protection, fraud detection, filing and backups to assess your application for a position at Think Systems to evaluate your application for a position for internal purposes such as auditing, data analysis, and research. To perform the agreement we have with you, for example: to provide other services you request To meet Think Systems’ legal obligations With your consent to send electronic communications to tell you about new products and services We use your personal information to provide you and other customers with services that you may request from us. Legal basis for doing so: In accordance with a contract Compliance with legal obligations and regulatory boards Legitimate interests – to provide a high standard of services, to protect the interests of our business and customers. To administer payments Legal basis for doing so: In accordance with a contract Compliance with legal obligations and regulatory boards To recover debts Legal basis for doing so: In accordance with a contract Compliance with legal obligations and regulatory boards Legitimate interest – to ensure that our business is run prudently, our assets are protected and we are able to recover debts owed to us To conduct credit checks Legal basis for doing so: Legitimate interest – to protect our business by reducing credit risks to us To resolve queries and complaints Legal basis for doing so: In accordance with a contract Compliance with legal obligations and regulatory boards Legitimate interest – ensure that our business is run prudently, queries are addressed, and complaints are investigated so we can prevent reoccurrence. To enhance or improve your and our other customers’ experience of our services Legal basis for doing so: Compliance with legal obligations and regulatory boards Legitimate interest – to ensure that our customers’ experiences of services are satisfying and to encourage continued interest. To tell you about our services Legal basis for doing so: Legitimate interest – to provide our customers with information about our services that may be of interest, provided that we have our customers’ consent to do so. To protect security e.g. to check your identity when you use our services Legal basis for doing so: In accordance with a contract Compliance with legal obligations and regulatory boards Legitimate interest – to prevent and investigate fraud and to check your identity in order to protect our business To comply with our legal obligations Legal basis for doing so: Compliance with legal obligations and regulatory boards Legitimate interest – to protect our business
Accessing your personal informationYou have certain rights with respect to the personal information we hold about you, which subject to laws, include the following: Request a copy of the personal data we hold about you; Inform us of a correction to your personal data; Exercise your right to restrict our use of your personal data; Exercise your right to erase your personal data; or Object to particular ways in which we are using your personal data. We provide customers with access to their personal information and the opportunity to amend and update their details or preferences in order to keep the information up-to-date and accurate. You can exercise your rights to any of the above by contacting us directly in writing. See ‘Point of Contact’ above. Requests must be made in writing and proof of identification is required in order to protect your information. We also require sufficient details to be able locate your information. For example, dates and details of the services that you have used. An optional form may be provided to assist us in locating the information you require.
Sharing your personal informationWe only share your information with suppliers and partner companies to fulfil your order or contract with us for the following reasons: Where services are provided together with a partner business and it is necessary to disclose the information to them in order to provide the services; for the prevention of fraud against us, third parties and customers; for the purposes of identity verification; for the purposes of recovering debt; to prevent money laundering; where products and services are provided to third parties by us (e.g. for the purposes of identity verification and fraud prevention, and it is necessary to disclose information to them in order to provide the service); Other third parties (including the police, law enforcement agencies, credit reference and fraud prevention agencies and other bodies) to protect our or another person’s rights, property, or safety e.g. to exchange information to protect against fraud and to reduce payment risks; in connection with the prevention and detection of crime. We may be required to disclose certain personal information because it is required by law or for the purposes of legal proceedings. If false or inaccurate information is provided and fraud is identified, details will be passed to fraud prevention agencies. Law enforcement agencies may access and use this information. We and other organisations may also access and use this information to prevent fraud and money laundering, for example, when: Checking details on applications for credit and credit related or other facilities; Managing credit and credit related accounts or facilities; Recovering debt; Checking details on proposals and claims for all types of insurance; Checking details of job applicants and employees We and other organisations may access and use, from other countries, the information recorded by fraud prevention agencies. We may need to transfer personal information about customers to suppliers located outside the UK. If we do, we will ensure that information is protected to a level which meets the requirements of the relevant law.