Mercu IT Solutions Ltd Online Privacy Statement
Mercu-it.co.uk ("the Website") is owned and operated by Mercu IT Solutions Ltd. This policy explains how Mercu may use information we may collect about you, as well as your rights about any of your personal information that we hold.
We respect your privacy and are committed to doing the right thing when it comes to protecting your personal data.
the types of personal data that we collect;
why we collect and use your personal data;
when and why we will share personal data with other organisations;
the rights and choices you have when it comes to your personal data; and
why and how we collect and process your personal data when you use our website, including any data you may provide through its website and anyone else who contacts or otherwise submits information to Everything ICT.
This website is not intended for children and we do not knowingly collect data relating to children.
This website may include links to third-party advertisers, affiliates, websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements, notices or policies. When you leave our website, we encourage you to read the privacy notice of every website you visit. We do not accept any responsibility or liability for the privacy policies or notices on third-party websites. We recommend you review these policies before you submit any personal data to third-party websites.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.
The Data Controller
The data controller (as defined under European Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) is Mercu IT Solutions Ltd, which is registered as a data controller with the UK Information Commissioner’s Office (“ICO”) and its registration number is ZA759075.
Mercu IT Solutions Ltd is registered with company number 12336414 and its registered office address is 87 Station Road, Ashington, Northumberland, England, NE63 8RS. You have the right to make a complaint at any time to the (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).
We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
Why we may collect data about you
There are many reasons why we may legitimately collect and process your personal information and data, including:
Consent in specific situations. We may collect and process your data with your consent.
Legal compliance. If the law or any regulator in any competent jurisdiction requires us to, we may need to collect and process your data and may need to provide this data to any such regulator.
Legitimate interest. We may process your information in the day to day marketing of our business. In specific situations, we require your data to pursue our legitimate interests in a way which might reasonably be expected as part of marketing our business and which does not materially impact your rights, freedom or interests.
How we may obtain your data and information
We may obtain information in several ways which may include:
Information which you provide to us.
Information that we receive from third parties – including affiliated companies and third parties who provide services to you or us.
Information that we learn about you through our relationship with you.
Information that we gather from the technology which you use to access our services (for example an IP address or telephone number).
Information that we gather from publicly available sources, such as the press, social media, third party databases, company registers and online search engines.
What information we may collect and process
The types of personal information and data may include (but is not limited to):
Basic personal information, including name and contact details.
Company information, including job title, department, location address and contact details.
Visual images and personal appearance (such as images from social media). and
Online profile and social media information and activity, based on your interaction with us and our websites and applications, including for example your, Internet Protocol (IP) address, device information, location, searches and site visits.
How we use your information
We may use your personal information and/or data to:
Contact you or, if applicable, your designated representative(s) by post, telephone, electronic mail, etc.;
Provide you with information relating to the marketing our products and services; and
Fulfilling our legal and regulatory requirements.
We do not sell or share your personal information and/or data to third parties for third party direct marketing purposes.
Disclosure of your information (including outside of the European Economic Area “EEA”)
We may share your personal information with affiliates outside of the EEA.
When we share your information with third parties, they will process your information as either a data controller or as our data processor and this will depend on the purposes of our sharing your personal data with such third party. We will only share your personal data in compliance with the applicable data protection laws and regulatory requirements.
We may disclose your information to third parties:
When you specifically request this, such as when you submit information to inquire about jobs or submit a job application through the websites.
To buyers or any of our business or assets.
If we are under a duty to disclose or share your personal data to comply with any legal obligations or regulatory requirements.
We may transfer data to affiliates and third-party agents so for the marketing of products and services.
Transfers may be made outside the EEA where we are satisfied that appropriate safeguards are in place over the transferring and processing of such information or data.
We may share some broader statistics and profiling information with third parties, but the information or data will be anonymised, so you will not be identifiable from that data. We will not rent or sell your data and/or information details to any other organisation or individual.
Storage of your personal data (including outside of the “EEA”)
The data and information that we collect, and process may be transferred to, and stored at, a destination outside of the UK. We will only do so on the basis that anyone to whom we transfer your data to protects it in the same way that we would and such entity or person or other third party is subject to the appropriate safeguards.
In the event that we transfer personal information to countries outside of the EEA, we will only do so where:
the European Commission has decided that the country or the organisation, entity or individual to whom we are transferring to or sharing your data and/or information with, will protect your information adequately;
the transfer has been authorised by the relevant data protection authority; and/or
we have entered into a contract with the organisation, entity or individual with whom we are sharing your data and/or information (on such terms as approved by the European Commission), to ensure your information is adequately protected. If you wish to obtain a copy of the relevant data protection clauses in such contracts, please contact us at DPO@mercu-it.co.uk.
We follow strict security procedures as to how your information and/or data is stored and used, and who sees it, to help stop any unauthorised third parties getting hold of it. Once we have received your information and/or data, we will use strict procedures and security features to prevent unauthorised access. Unfortunately, the transmission of information via the internet is not completely secure and although we will do our best to protect your information and/or personal data, we cannot guarantee its security completely. Accordingly, in the case of a ecurity breach we do not accept any liability for the direct or indirect loss, theft or misuse of the any information and/or data that you have provided to us and/or which you have registered on our website.
We want to make sure you are aware of your rights in relation to the information and/or data that we hold about you. Your rights and the circumstances in which they apply can be found at www.ico.org.uk
You have a right to object at any time to processing of your information and/or data for direct marketing purposes, including profiling you for the purposes of direct marketing.
If you would like to change your marketing preferences, please contact us at DPO@mercu-it.co.uk.
Lodge complaints – You have a right to lodge a complaint with the regulator.
How long we keep your information
By providing you with products or services, we create records that contain your information, and/or data such as activity and marketing records. Records can be held on a variety of media (physical or electronic) and formats. Records help us demonstrate that we are meeting our responsibilities and to keep as evidence of our business activities.
Retention periods for records are determined based on the type of record, the nature of the activity, product or service, applicable local legal or regulatory requirements. Retention periods may be changed from time to time based on business or legal and regulatory requirements.
We may, on exception, retain your information for longer periods, particularly where we need to withhold destruction or disposal based on an order from the any courts of competent authority, or in relation to an investigation by law enforcement agencies or our regulators. This is intended to make sure that we are able to produce records as evidence if needed to those respective authorities.
If you would like more information about how long we keep your information, please contact us at DPO@mercu-it.co.uk.