standard-title Privacy statement

Privacy statement

Who we are

Our website address is:

Privacy Statement

This policy is effective from 1/03/2020

This Privacy Statement sets out how Databac Group Limited protects any personal information submitted to us by you, in order to comply with The General Data Protection Regulation. Databac is committed to ensuring that your privacy is protected. If you provide certain information by which you can be identified, then you can be assured that it will only be used in accordance with this privacy statement. Databac Group may update this policy in the future in order to maintain GDPR compliance.

Personal data we collect

The types of personal data that we hold may include the following:
• Your name
• Your Business name
• Email address
• Business address
• Demographic information such as postcode, preferences and interests
• Other information relevant to customer surveys and/or offers

How we collect data

We will, in most cases, collect data directly from you. Some data will be created internally, for example if you are a client or supplier of Databac Group. H M Revenue & Customs, Companies House, external Due Diligence Companies and Experian are examples of external sources from which we may obtain personal data. 
Our website collects data via the contact form which requests you supply your name, email and organization.

What we do with the information we gather

We require this information to understand your needs and provide you with our goods and services, and in particular for the following reasons:
• Internal record keeping.
• We may use the information to improve our products and services.
• We may periodically send promotional emails about new services, special offers or other information which we think you may find interesting using the email address which you have provided.
• From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone or post. We may use the information to customise the website according to your interests.
• If you are a client or supplier we will process your personal data to carry out our obligations in accordance with the contractual agreement that we have entered into with you, for which you have provided your consent and information at the point of engagement, for us to process your personal data in the course of providing our services to you.
• If at any time there is a need for us to obtain your express consent to process your data we will contact you to obtain your consent, explaining the actions we wish to take and why.
• There will be circumstances where we are legally obliged to process your data, specific examples of this would be responding to the requirements of HM Revenue & Customs or to undertake the Due Diligence process requirements.

Secure storage of your data

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

Your personal data in electronic format is stored on secure servers in the cloud as well as on secure servers in our office, protected behind a robust firewall. Paper files may also be held at our offices. Your personal information will only be accessed by authorised personnel to allow them to perform their specific duties or by authorised 3rd parties with their own robust privacy policies in place. Such 3rd parties may include Sendinblue, MailChimp, DropBox, Microsoft, website hosting providers and external self-employed staff who have all agreed and signed our Supplier Terms & Conditions and Non-Disclosure Agreements. We use strict procedures and security measures to try to prevent any unauthorised access to, or accidental disclosure of your data.

Accuracy of Information

It is your responsibility to notify us of any changes to your personal data during the period we supply services and goods to you. We will ensure that any changes to data are amended as soon as you notify us of them.

Data Retention

It is our normal practice to retain documents relating to client dealings for 6 years. Documents which are more than 6 years old (unless separate arrangements have been made) will be destroyed without reference to you unless there are certain statutory obligations relating to the retention of some documents.

Your right of access to data

You have a right to request access to the personal data we hold for you. This right can be exercised by sending your request in writing by email or post to the Data Controller at Databac Group whose details are at the end of this policy. Your right to have your personal data corrected or updated

You may at any time exercise your right to restrict the processing of your personal data by sending your request in writing by email or post to the Data Controller at Databac Group whose details are at the end of this policy.

Your right to be forgotten

You can request to have your personal data deleted. This right will be subject to certain statutory requirements for us to retain certain records. In the event you wish to exercise your right to be forgotten we will provide you with details of any exceptions. This right can be exercised by sending your request in writing by email or post to the Data Controller at Databac Group whose details are at the end of this policy.

Your right to withdraw your consent

You can withdraw your consent to our processing your personal data (subject to any statutory exceptions) which will terminate our supply of goods and services to you. This right can be exercised by sending your request in writing by email or post to the Data Controller at Databac Group whose details are at the end of this policy.

The right to complain to the Information Commissioner’s Office (ICO)

If you are concerned regarding the handling of your personal data you have the right to complain to the ICO, the supervisory authority in the UK.

How we use cookies

We use third party cookies such as Google Analytics and Whois Data Ltd for website analytics/metrics. A cookie consists of information sent by a web server to a web browser and stored by the browser. The information is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.

We may collect, store, and use the information about your computer and about your visits to and use of this website including your IP address, geographical location, browser type, referral source, length of visit and number of page views. Also, information that you provide to us for the purpose of subscribing to our email newsletter including your title, name, address and email details.

We use third party cookies such as Google Analytics and Whois Data Ltd for website analytics/metrics. This category comprises cookies used to evaluate site performance in terms of number of visits, unique visitors, drop-off rate for transactions etc. We measure numbers and volumes of visitors to different parts of our site and this helps us ensure the service is fast and available when you want it. It also helps us ensure that different pages on our site are useful and easy to find.

We will not use cookies to collect personally identifiable information about you but we may identify your organisation.
However, if you wish to restrict or block the cookies which are set by our websites, or indeed any other website, you can do this through your browser settings. The ‘Help’ function within your browser should tell you how.

Alternatively, you may wish to visit which contains comprehensive information on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your machine as well as more general information about cookies.
Please be aware that restricting cookies may impact on the functionality of our website.

If you wish to view a cookie’s code, just open your cookie file in your browser and click on a cookie to open it. You will see a short string of text and numbers. The numbers are your identification card, which can only be seen by the server that gave you the cookie.

For information on how to do this on the browser of your mobile phone you will need to refer to your handset manual.

Links to other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

The Data Controller

The Data Controller can be contacted by email at [email protected] or by post to the Data Controller, Databac Group Limited, 1 The Ashway Centre, Elm Crescent, Kingston-upon-Thames, London. United Kingdom KT2 6HH.