Devtech Business Systems needs to gather and use certain information about individuals. These can include customers, suppliers, business contacts, employees and other people the organisation has a relationship with or may need to contact.
This policy describes how this personal data is collected, handled and stored to meet the company’s data protection standards — and to comply with the law.
Why this policy exists
This data protection policy ensures Devtech Business Systems:
• Complies with data protection law and follow good practice
• Protects the rights of staff and customers
• Is open about how it stores and processes individuals’ data
• Protects itself from the risks of a data breach
This policy applies to:
• The head office of Devtech Business Systems
• All staff and volunteers of Devtech Business Systems
• All contractors, suppliers and other people working on behalf of Devtech Business Systems
It applies to all data that the company holds relating to identifiable individuals. This can include:
• Names of individuals
• Postal addresses
• Email addresses
• Telephone numbers
• …plus any other information relating to individuals
Like most website operators, Devtech Business Systems collects nonpersonally- identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. Devtech Business Systems’ purpose in collecting non-personally identifying information is to better understand how Devtech Business Systems’ visitors use its website.
From time to time, Devtech Business Systems may release non-personallyidentifying information in the aggregate, e.g., by publishing a report on trends in the usage of its website.
Devtech Business Systems also collects potentially personally-identifying information like Internet Protocol (IP) addresses for logged in users and for users leaving comments on Devtech Business Systems blogs. Devtech Business Systems only discloses logged in user and commenter IP addresses under the same circumstances that it uses and discloses personally-identifying information as described below, except that blog commenter IP addresses are visible and disclosed to the administrators of the blog where the comment was left.
Gathering of Personally-Identifying Information
Certain visitors to Devtech Business Systems websites choose to interact with Devtech Business Systems in ways that require Devtech Business Systems to gather personally-identifying information. The amount and type of information that Devtech Business Systems gathers depends on the nature of the interaction. For example, we provide a facility which allows visitors to book an appointment and this information is held securely in our CRM and Mailchimp for the purpose of communications with the customer. If payment is part of the transaction, we use the secure features of Stripe. In each case, Devtech Business Systems collects such information only insofar as is necessary or appropriate to fulfill the purpose of the visitor’s interaction with Devtech Business Systems. Devtech Business Systems does not disclose personally-identifying information other than to comply with the law. And visitors can always refuse to supply personally-identifying information, with the caveat that it may prevent them from engaging in certain website related activities.
From time to time, we may use online advertisers such as Google or Facebook but not limited to these. I order to provide the best experience possible, our website may contain analytics code provided by providers such a Google, LinkedIn and Facebook. By using these services, we transfer non-personally identifiable information. Further information available here
If you wish to opt-out of this, please check out https://tools.google.com/dlpage/gaoptout/
Data protection risks
This policy helps to protect Devtech Business Systems from some very real data security risks, including:
• Breaches of confidentiality. For instance, information being given out inappropriately.
• Failing to offer choice. For instance, all individuals should be free to choose how the company uses data relating to them.
• Reputational damage. For instance, the company could suffer if hackers successfully gained access to sensitive data.
Everyone who works for or with Devtech Business Systems has some responsibility for ensuring data is collected, stored and handled appropriately.
Each team that handles personal data must ensure that it is handled and processed in line with this policy and data protection principles.