Privacy Policy

Data controller: Plean Precast Limited

What is the purpose of this document?

As a data controller, we take your privacy seriously. We may collect and process personal data of those using our website. We are committed to being transparent about how we collect and use that data and to meeting our data protection obligations.

What information do we collect?

We collect and process a range of information, most often including:

• Your name, address, and contact details, including email address and telephone number
• The nature of your enquiry
• The details of any products or services that you have enquired about
• Information about your preferences and interests

How do we collect and store that information?

We may collect this information in a variety of ways from you:

Website enquiry forms

Enquiry forms on our website are used to collect data and enable you to make contact with us. The information being collected is clearly set out on the form and will be passed to us by e-mail.

Website ‘cookies’

Cookies are small files saved to a user’s computer hard drive which track, save and store information about the user’s interaction and usage of the website. This allows the us to provide users with a more personal, tailored experience while browsing our website.

Where applicable, the Company website uses a cookie control system which allows users to give explicit permission or to deny the use of /saving of cookies on their computer. In the event that this option is not available users are advised to access their web browser’s security settings to block all cookies from this website.

Why do we process personal data?

We need to process data enable us to have a working relationship with our customers, potential customers and other third parties. For example, we hold information to ensure that we can make contact to discuss requirement, agree orders and schedule deliveries.
In some cases, we need to process data to ensure that it is complying with our legal obligations. For example, to comply with health and safety laws or other legal obligations.

In other cases, we may have a legitimate interest in processing personal data before, during and after the end of a working relationship.

Who has access to data?

Your information may be shared internally, including with members of our Team that are required to satisfy your enquiry or meet our contractual obligation and with IT staff if access to the data is necessary for performance of their roles.

We may share your data with third parties in the context of a sale of some, or all, of our business. In those circumstances, the data will be subject to confidentiality arrangements.

We may also share your data with third parties that process data on our behalf, in connection with services being provided to you. In that event, we would require the third party to treat that data in accordance with Data Protection law. The following are such examples:

• External advice/design services that may be required in relation to the products or services being supplied
• External transport services where deliveries are not made by our own employees

Your data may be transferred to countries outside the UK where:

• The transfer is to a country which the UK Government has decided ensures an adequate level of protection for your personal data, or
• We have put in place our own measures to ensure adequate security as required by data protection law, or
• You have consented to the transfer, or
• The transfer is necessary for one of the reasons set out in Data Protection Legislation, including the performance of a contract between us, or to protect your vital interests, or
• The transfer is legally required on important public interest grounds or for the establishment, exercise to defence of legal claims

How do we protect data?

We have internal policies and controls in place to try to ensure that your data is not lost, accidentally destroyed, misused, or disclosed, and is not accessed except by its employees in the performance of their duties. These include, but are not limited to, electronic controls such as password protection as well as physical control such as locked storage facilities for personal data.

Where we engage third parties to process personal data on our behalf, they do so on the basis of written instructions, are under a duty of confidentiality and are obliged to implement appropriate technical and organisational measures to ensure the security of data.

We use a cPanel hosting platform running on a Linux operating system which utilises industry standard software such as Apache, MySQL, PHP, Dovecot, and Exim. Hosted in a UK datacentre, the providing server for our hosting platform runs on the latest supported operating systems and software and these systems are regularly inspected and patched against known vulnerabilities.

Other matters

File Sharing and External Links

From time to time we may publish files and external links on the Company’s website. Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available, users are advised to verify their authenticity using third party anti-virus software or similar applications.

We accept no responsibility for third party downloads and downloads provided by external third-party websites.

Social Media Usage

We strive to ensure our business and our staff conduct themselves accordingly online. While we may have official profiles on social media platforms, users are advised to verify authenticity of such profiles before engaging with them and more importantly, before sharing personal data. We will never ask for user passwords or personal details on social media platforms.

There may be instances where our website features social sharing buttons which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page.

For how long do we keep data?

We will only retain personal information for as long as necessary to fulfil the purposes it was collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Details of retention periods for various aspects of personal information held by us are available on request.

When determining the appropriate retention period for personal data, we will consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of personal data, the purposes for which the personal data is processed, whether we can achieve those purposes through other means, and the applicable legal requirements.

In some circumstances we may anonymise personal information so that it can no longer be associated with individuals, in which case we may use such information without further notice. After the data retention period has expired, the we will securely destroy personal information via shredding or other secure means.

Your rights

As a data subject, you have a number of rights. You can:

• access and obtain a copy of your data on request
• require us to change incorrect or incomplete data
• require the us to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing; and
• object to the processing of your data where we are relying on our legitimate interests as the legal ground for processing

If you would like to exercise any of these rights, please contact our Financial Director by sending an e-mail to datacontroller@pleanprecast.com or by writing to us at:

Plean Precast Limited
President Kennedy Drive
Plean
FK7 8AX

If you believe that we have not complied with your data protection rights, you can complain to the Information Commissioner.