We have reviewed our data collection and retention policy in line with the General Data Protection Act (GDPR). This page provides an overview and if you would like more details please contact us at firstname.lastname@example.org.
This page relates specifically to data collected via this website or in person. Please contact us if you need other information.
We collect data from visitors to this website using google analytics and the contact page when you email us with an enquiry. We also collect your details when we met you in person following our initial consultation.
If you are a client or contractor when you submit your data to us by email or in person this is collected and is used by us in a variety of ways. We take your privacy very seriously and we will have your data stored in several other places for the purposes of invoicing along with statutory and legal requirements to deliver your project, including the following:
- Appointing the relevant consultants for your project
- Planning and Building Regulations applications
- Construction Design Management Pre-Construction Documents
- Notifications to the Health & Safety Executive
- Building Contract Documents
- Providing and personalising our services
- Dealing with your enquiries and requests
- In-house benchmarking analysis
- Recommending contractors to clients
In all cases our aim is that it is clear what you are opting into and you will have given your consent for us to use your data. More generally, we do not pass on your data to any third party without consent. If you would not like us to pass on your data, please email email@example.com.
Where your Data is Stored?
Your data stored includes names, email addresses, telephone numbers and postal address which is stored on our Microsoft Office 365 account and is also backed up on multiple remote hard drives. In this instance, Office 365 is the data processor and Graham Rivers Architects is the data controller. Microsoft Office 365 is a security-hardened cloud-based online data storage subscription service. All of our office devices and data are protected with Prey Anti-Theft software.
More information about Office 365 security can be found here: https://products.office.com/en-gb/business/office-365-trust-center-security
More about the Microsoft Office 365 commitment to data protection can be found here: https://privacy.microsoft.com/en-gb.
More information about Prey Anti-theft security can be found here: https://www.preyproject.com
Disclosure, opt out and deletion of your data Disclosures
You have the right to see the data we have collected about you. If you have any requests concerning your personal information or any queries regarding these practices, please contact us (the Data Compliance Officer) at firstname.lastname@example.org.
If you would like to opt-out from receiving email or postal communications from us or would like to change the media that we use to contact you (e.g. changing from email to postal mail), please contact us at email@example.com.
Data Retention and Deletion
Our policy is to retain data for the duration of the six-year liability period, a requirement as a chartered architects practice. Following the end of the six-year liability period we will delete your data from our database. If you would like to see or remove your personal data from our database, again please get in contact with us (the Data Compliance Officer) at firstname.lastname@example.org.
In addition to the above, we collect anonymous data information automatically about your visit to our website through cookies. Please see our Cookies Policy for more details. This does not fall within the remit of GDPR but is important.
If you have any concerns about our GDPR policy, you can contact us at email@example.com.