Privacy Policy
GAMIDOR TECHNICAL SERVICES LIMITED
PRIVACY POLICY
This is the privacy notice (“Privacy Notice”) of Gamidor Technical Services Limited (“GTS”), whose registered office is situated at 16 Great Queen Street, Covent Garden, London WC2B 5AH and whose principal place of business is located at 6 Hawksworth, Southmead Park, Didcot, Oxfordshire OX11 7HR in the United Kingdom.
GTS provides technical engineering services and distributes related products to medical diagnostic, bio-science research, food production and other laboratories and similar facilities in Great Britain and Ireland and elsewhere in Europe.
Privacy Policy
This Privacy Notice sets out GTS’s privacy policy, explaining how and why GTS collects, stores, uses and shares personal information. It also explains your rights in relation to your personal information.
When GTS collects, stores, uses and shares personal information, it is the controller of that information and, as such, subject to the provisions of the Data Protection Act 2018, the General Data Protection Regulations and any and all other applicable data protection laws and regulations for the time being in force (“DP Laws”).
GTS may amend its privacy policy from time to time. You are encouraged to check GTS’s Privacy Notice regularly, so as to understand how we may process your personal information.
What is personal information?
Information that can be used to identify you, directly or indirectly, alone, or together with other information, is “personal information”.
Personal information revealing racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership, genetic and biometric data, or data concerning health, sex life or sexual orientation is “special category personal information”.
Personal information collected by GTS
GTS collects personal information at each point of contact or interaction with you and may also collect personal information in the course of its business in general. Such information may include, but not be limited to, the following:
- personal details – full name, contact address, telephone number, email address
- financial date – bank account number, credit card information)
- employment data – employer, position / title, location
- medical or health information
How GTS collects personal information
GTS will collect personal information directly from you in person, by telephone, text or email, or via our website https://gamidor.co.uk/wpcms.
GTS may also collect information from publicly accessible sources, or directly from a third party, or from a third party on your instructions, or from our information technology systems, including our computer networks and connections, access control systems, communications systems, email and instant messaging systems.
How GTS uses personal information
Under the DP Laws, GTS can only use your personal information if it has a lawful reason for doing so. This can be:
- to comply with legal and regulatory obligations;
- for the performance of a contract with you or to take steps at your request before entering into a contract;
- for its legitimate interests or those of a third party, a legitimate interest being there is a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests; or
- where you have given consent.
GTS’s lawful reasons for using personal information
- To provide you with products or services;
- To prevent and detect fraud against either you or itself;
- To conduct checks to identify its customers and verify their identities;
- Other processing necessary to comply with professional, legal and regulatory obligations applicable to GTS’s business;
- Gathering and providing information required by or relating to audits, enquiries or investigations by regulatory bodies;
- Ensuring business policies are adhered to, for example, policies covering security and internet use;
- Operational reasons, such as improving efficiency, training and quality control;
- Ensuring the confidentiality of commercially sensitive information;
- Statistical analysis to assist the management of GTS’s business;
- Preventing unauthorised access and modifications to systems;
- Updating customer records;
- Statutory returns;
- Ensuring safe working practices, staff administration and assessments;
- Marketing of products and services;
- Credit reference checks via external credit reference agencies.
Use of special category personal information
The reasons listed above do not apply to special category personal information, which GTS will only process with your explicit consent. GTS may use health related data provided by you to serve you better and meet your particular needs.
How GTS shares personal information
We will share personal information with:
- third parties used to help deliver our products or services to you, such as payment service providers and delivery companies;
- other third parties engaged by GTS to help run its business;
- third parties approved by you;
- credit reference agencies;
- GTS’s insurers and brokers;
- GTS’s bank.
GTS will only allow service providers to handle your personal information if it is satisfied that they take appropriate measures to protect your personal information. GTS also imposes contractual obligations on service providers to ensure they can only use your personal information to provide services to GTS and yourself. GTS may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with its legal and regulatory obligations.
Where GTS stores personal information
Information may be kept at GTS’s offices, and those of its affiliates, third party agencies and service providers.
GTS has affiliates based outside the European Economic Area in Israel.
How long we retain personal information
GTS will retain your personal information while we are providing products or services to you.
After that, it will keep your personal information for as long as is necessary to respond to any questions, complaints or claims made by you or on your behalf; to show that GTS has treated you fairly, and to keep records required by law.
GTS will not retain your personal information for longer than necessary for the purposes set out in this policy.
Transfer of personal information out of the EEA
GTS may share your personal information outside the European Economic Area with its affiliates in Israel, but not otherwise.
Your rights under data protection law
You have the following rights under data protection law:
- to be provided with a copy of your personal information (the right of access);
- to require GTS to correct any mistakes in your personal information;
- to require GTS to delete your personal information in certain circumstances;
- to require GTS to restrict processing of your personal information in certain circumstances;
- to receive the personal information you provided to GTS, in a structured, commonly used and machine-readable format or transmit that data to a third party in certain circumstances;
- to object at any time to your personal information being processed for direct marketing (including profiling); and in certain other situations to GTS’s continued processing of your personal information;
- not to be subject to automated individual decision-making.
If you would like to exercise any of your rights, please contact GTS accordingly.
How we keep personal information secure
GTS has appropriate security measures to prevent personal information from being lost or used or accessed unlawfully. Only those who have a genuine business need to access personal information can see it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. GTS also has procedures to deal with a suspected data security breach. GTS will notify you and any applicable regulator of a suspected data security breach when it is legally required to do so.
How to contact us
If you have any questions or concerns about use of personal information, please contact the Data Protection Officer at GTS, Susanne Dunmore: 01235 514180; susannedunmore@gamidor.co.uk.
How to make a complaint
It is hoped that the Data Protection Officer will be able to resolve any questions or concerns you may have about the use of your information.
The supervisory authority for data protection complaints in the UK is the Information Commissioner who may be contacted at their website: https://ico.org.uk/concerns, or by telephone on 0303 123 1113.