Privacy Statement

Privacy Statement

 

1.   Purpose, Scope & Users

Nolan Business Solutions plc (Nolan) respects your privacy and is committed to protecting your personal data. This privacy notice will inform you as to how we look after your personal data, tells you about your privacy rights and how the law protects you

This privacy notice is relevant to our relationship with you as a customer and so relates to our interactions with you when you (i) visit our website, (ii) sign up for an NCS APP (iii) make an enquiry in any manner or (iv) negotiate or enter into a contract for good or services with us whether online or offline.

Purpose of this privacy notice- This privacy notice aims to give you information on how Nolan collects and processes the personal data collected through interactions with you. It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements other notices and privacy policies and is not intended to override them.

This privacy policy should be read alongside, and in addition to, our Terms and Conditions, which can be found at: https://www.nolanbusinesssolutions.co.uk/terms-and-conditions.

2.   Definitions and Interpretations

Nolan’s customers are business customers only. In this privacy notice we assume that you are a business customer and are a corporate subscriber (as defined in the privacy and e-comm regulations - PECR). If you are a sole trader or operate as a partnership and would otherwise be an individual subscriber under PECR, you must let us know.

Controller- Nolan Business Solutions Public Limited Company (Company number: 02305512) of Cedar House, Ancells Road, Fleet, Hampshire, GU51 2UN is the controller and responsible for your personal data (collectively referred to as “Nolan”, "we", "us" or "our" in this privacy notice).

We have appointed a data privacy manager who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the data privacy manager using the details set out below.

Contact details- If you have any questions about this privacy notice or our privacy practices, please contact our data privacy manager: data@nolanbusinesssolutions.com

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

Third-party links- This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

The data we collect about you- Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

3.   Data Collected

We may collect, use, store and transfer different kinds of data about you which we have grouped together as follows. Not all of this will be personal data and on the basis that our customers are businesses and corporate subscribers we consider only Identity, Contact Data, Profile Data and Marketing Data to be personal data:

  • Identity Data includes first name, last name, username or similar identifier, title.
  • Contact Data includes billing address, delivery address, email address and telephone numbers.
  • Financial Data includes bank account and payment card details where you pay us directly. If our third party payment provider is used we do not collect or process this type of data ourselves.
  • Transaction Data includes details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data includes information about how you use our website, products and services.
  • Marketing Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.

 We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

If you fail to provide personal data- Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.

4.   How we collect Data

We use different methods to collect data from and about you including through:

Directly Collected. You may give us data by filling in forms, placing orders with us, or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:

  • apply for our products or services;
  • create an account on our website;
  • subscribe to our service or publications;
  • request marketing to be sent to you;
  • enter a competition, promotion or survey; or
  • give us feedback or contact us.

 Automated technologies or interactions. As you interact with our website, we will automatically collect Technical and Usage Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies and other similar technologies. Please see our cookie information in clauses 10 & 13 below.

 

5.   Our use of Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • Where we need to perform the contract we are about to enter into or have entered into with you.
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Where we need to comply with a legal obligation.

 Generally, we do not rely on consent as a legal basis for processing your personal data although we will get your consent before sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.

Opting out- You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you. Where you opt out of receiving these marketing messages, this will not apply to personal data provided to us as a result of a product/service purchase, warranty registration, product/service experience or other transactions.

Cookies- You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use, please see clauses 10 & 13 below.

Change of purpose - We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us.

If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

If we transfer your personal information to countries outside the European Economic Area (EEA), we will ensure adequate safeguards are in place to protect your data, such as using standard contractual clauses or relying on an adequacy decision by the European Commission.

6.   Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

7.   Data retention

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after they cease being customers for tax purposes.

In some circumstances you can ask us to delete your data: see section below for further information.

In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

8.   Your rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data. You have the right to:

  1. Right to access - the right to request (i) copies of the information we hold about you at any time, or (ii) that we modify, update or delete such information. If we provide you with access to the information we hold about you, we will not charge you for this, unless your request is "manifestly unfounded or excessive." Where we are legally permitted to do so, we may refuse your request. If we refuse your request, we will tell you the reasons why.
  2. Right to correct - the right to have your Data rectified if it is inaccurate or incomplete.
  3. Right to erase - the right to request that we delete or remove your Data from our systems.
  4. Right to restrict our use of your Data - the right to "block" us from using your Data or limit the way in which we can use it.
  5. Right to data portability - the right to request that we move, copy or transfer your Data.
  6. Right to object - the right to object to our use of your Data including where we use it for our legitimate interests.

To make enquiries, exercise any of your rights set out above, or withdraw your consent to the processing of your Data (where consent is our legal basis for processing your Data), please contact us via this e-mail address: data@nolanbusinesssolutions.com

If you are not satisfied with the way a complaint you make in relation to your Data is handled by us, you may be able to refer your complaint to the relevant data protection authority. For the UK, this is the Information Commissioner's Office (ICO). The ICO's contact details can be found on their website at https://ico.org.uk/

It is important that the Data we hold about you is accurate and current. Please keep us informed if your Data changes during the period for which we hold it.

9.   Links to other websites

This Website may, from time to time, provide links to other websites. We have no control over such websites and are not responsible for the content of these websites. This privacy policy does not extend to your use of such websites. You are advised to read the privacy policy or statement of other websites prior to using them.

10.   Changes of business ownership and control

Nolan may, from time to time, expand or reduce our business and this may involve the sale and/or the transfer of control of all or part of Nolan. Data provided by Users will, where it is relevant to any part of our business so transferred, be transferred along with that part and the new owner or newly controlling party will, under the terms of this privacy policy, be permitted to use the Data for the purposes for which it was originally supplied to us.

We may also disclose Data to a prospective purchaser of our business or any part of it.

In the above instances, we will take steps with the aim of ensuring your privacy is protected.

11.   Cookies

This Website may place and access certain Cookies on your computer. Nolan uses Cookies to improve your experience of using the Website and to improve our range of products and services. Nolan has carefully chosen these Cookies and has taken steps to ensure that your privacy is protected and respected at all times.

All Cookies used by this Website are used in accordance with current UK and EU Cookie Law.

This Website may place the following Cookies:

Type of Cookie

Purpose

Strictly necessary cookies

These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, use a shopping cart or make use of e-billing services.

Analytical/performance cookies

They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.

Functionality cookies

These are used to recognise you when you return to our website. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region). By using the Website, you agree to our placement of functionality cookie.

 

You can find a list of Cookies that we use in the Cookies Schedule.

You can choose to enable or disable Cookies in your internet browser. By default, most internet browsers accept Cookies but this can be changed. For further details, please see the help menu in your internet browser. You can switch off Cookies at any time, however, you may lose any information that enables you to access the Website more quickly and efficiently.

You can choose to delete Cookies at any time; however, you may lose any information that enables you to access the Website more quickly and efficiently including, but not limited to, personalisation settings.

It is recommended that you ensure that your internet browser is up-to-date and that you consult the help and guidance provided by the developer of your internet browser if you are unsure about adjusting your privacy settings.

For more information generally on cookies, including how to disable them, please refer to aboutcookies.org. You will also find details on how to delete cookies from your computer.

12.   General

You may not transfer any of your rights under this privacy policy to any other person. We may transfer our rights under this privacy policy where we reasonably believe your rights will not be affected.

If any court or competent authority finds that any provision of this privacy policy (or part of any provision) is invalid, illegal or unenforceable, that provision or part-provision will, to the extent required, be deemed to be deleted, and the validity and enforceability of the other provisions of this privacy policy will not be affected.

Unless otherwise agreed, no delay, act or omission by a party in exercising any right or remedy will be deemed a waiver of that, or any other, right or remedy.

This Agreement will be governed by and interpreted according to the law of England and Wales. All disputes arising under the Agreement will be subject to the exclusive jurisdiction of the English and Welsh courts.

13.   Changes to this privacy policy

Nolan reserves the right to change this privacy policy as we may deem necessary from time to time or as may be required by law. Any changes will be immediately posted on the Website and you are deemed to have accepted the terms of the privacy policy on your first use of the Website following the alterations. You may contact Nolan by email at data@nolanbusinesssolutions.com

 

14.   Cookie Schedule

Below is a list of the cookies that we use. We have tried to ensure this is complete and up to date, but if you think that we have missed a cookie or there is any discrepancy, please let us know.

14.1   Strictly necessary

We use the following strictly necessary cookies:

Description

Purpose

AWSALBCORS

This cookie is managed by AWS and is used for load balancing.

AWSALB

This cookie is managed by AWS and is used for load balancing.

.ASPNetCore.Session

This cookie is used to remember the users session context.

.ASPNetCore.Antiforgery

This cookie is used to prevent fraudulent requests to the server

NolanServices.ApplicationCookie

This is an authentication cookie

 

14.2   Functionality

We use the following functionality cookies:

Description

Purpose

_stripe_mid

Stripe is used for credit card payments. Stripe uses a cookie to remember who you are and to enable our website to process payments without storing any credit card information on its our servers.

_stripe_sid

Stripe is used for credit card payments. Stripe uses a cookie to remember who you are and to enable our website to process payments without storing any credit card information on its our servers.

 

14.3   Analytical/performance

We use the following analytical/performance cookie:

Description

Purpose

_ga, _gid, _gclxxxx

We use Google Analytics to understand how visitors use our website. We use this information to compile reports and to help us improve the user experience.

_gat_au

We use Google Analytics to understand how visitors use our website. We use this information to compile reports and to help us improve the user experience.

all_RyDwsxxxxx

We use ClickDesk analytics to understand visitor count, site visit time etc.

ai_session

This cookie name is associated with the Microsoft Application Insights software, which collects statistical usage and telemetry information for apps built on the Azure cloud platform. This is a unique anonymous session identifier cookie.

ARRAffinity

This cookie is set by websites run on the Windows Azure cloud platform. It is used for load balancing to make sure the visitor page requests are routed to the same server in any browsing session.

 

var _glc =_glc || []; _glc.push('all_ag9zfmNsaWNrZGVza2NoYXRyDwsSBXVzZXJzGMTP7pYDDA'); var glcpath = (('https:' == document.location.protocol) ? 'https://my.clickdesk.com/clickdesk-ui/browser/' : 'http://my.clickdesk.com/clickdesk-ui/browser/'); var glcp = (('https:' == document.location.protocol) ? 'https://' : 'http://'); var glcspt = document.createElement('script'); glcspt.type = 'text/javascript'; glcspt.async = true; glcspt.src = glcpath + 'livechat-new.js'; var s = document.getElementsByTagName('script')[0];s.parentNode.insertBefore(glcspt, s);