Data controller: Test & Research Centre Ltd.
Address: 10 Queen Street Place, London, EC4R 1BE
Last updated: 1/1/20
Effective from: 1/1/20
We may amend this policy occasionally and will inform you of any significant changes that will affect you.
Data we collect about you
During our working relationship, we will collect a limited amount of personal data relating to people we come into contact with, such as our clients, potential clients, suppliers, visitors and collaborators. In most cases, this will be limited to:
- Your name
- Job title
- Work email address
We may also collect additional data, such as your signature (if you sign any documentation on behalf of your company), your photograph (e.g. if you agree to take part in a case study) or your IP address (when we are in email contact with you or you visit our website).
Sometimes we will collect data directly from you, for example during a conversation or from your business card or email signature. We may also find it on publicly available sources, such as social media, news articles, corporate websites or delegate lists from events. Your data may also be shared with us by one of your colleagues or a mutual associate.
It would be impossible to work with you effectively or grow our business if we didn’t collect this type of data, and therefore our lawful basis for doing so is legitimate interests. We won’t obtain or store any more information than we need.
How we use your data
We use your data to manage our relationship with you and where applicable, our contract. It also enables us to give your and your organisation a high level of service. We may also use it to introduce ourselves, if we believe you’ll be interested in our services or in collaborating with us.
We may share your data with a small number of trusted data processors. These are carefully chosen companies who help us communicate with you and work more productively. Our non-EU data processors are all based in countries that have been recognised by the European Commission as providing adequate protection for your data. Those who are based in the United States participate in the EU-US Privacy Shield Framework.
In each of these examples, our lawful basis for processing your data is legitimate interests, because it helps us to grow our business.
We would not share your data with anyone else without speaking to you first.
Storing your data
We’ll retain your data for as long as necessary to enable us to manage our working relationship with your organisation.
Under GDPR, you have a number of rights over your own data.
One of these rights is the right to object to direct marketing or any processing that is based on legitimate interests. To let us know that you object, please email firstname.lastname@example.org and explain exactly what data processing it is that you’re concerned about.
Your other rights are explained on the Information Commissioner’s Office website.
If you are concerned about how we use your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.