Scroll Arrow

Privacy Policy

scroll-icon

PRIVACY STATEMENT 

 This Privacy Notice sets out how Elliott Design Partnership (‘EDP’) deals with your personal data that we collect in the course of your use of this website and as a result of interacting with EDP in other ways. Protecting the privacy of our clients is important to EDP. This privacy policy is provided as a means of allowing you to understand what information we may ask you to supply and what we do (and don’t do) with it.  We take privacy and security of your information seriously and will only use such personal information as set out in this privacy policy. 

 It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data.  This privacy notice supplements the other notices and is not intended to override them.


1. Collection of information by third parties

The EDP website contains links or references to other sites whose information practices may differ from those of EDP.  If you should visit such third party sites, you should ensure that you read the relevant privacy notices on those sites as we have no control over information that is submitted to, or collected by these third parties.


2. Who we are - EDP

EDP is the trading name of Elliott Design Partnership Limited.  Information that is collected as a result of your use of this website will be the responsibility of EDP, who will act as data controller in relation to your personal data.

We have appointed a data protection officer who is responsible (amongst other things) for overseeing questions in relation to this privacy notice.  If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the details set out below:

Data Protection Officer, Elliott Design Partnership, 3rd Floor Studio, Hilgrove House, Hilgrove Street, St Helier, Jersey JE2 4SL and/or an email to dion@elliottdesignpartnership.com

You have the right to make a complaint at any time to the Office of the Information Commissioner’s Office (OIC), the Jersey supervisory authority for data protection issues (https://www.dataci.je/).  We would, however, appreciate the chance to deal with your concerns before you approach the OIC so we would request that you please contact us in the first instance.


3. Where and when we collect your data

We may collect and process your personal data from a variety of sources, including:

  • Your use of this website or when you contact us by telephone, post, email or through any other means (including for the avoidance of doubt via social media services);

  • When you make enquiries and/or engage with us to receive our services;

  • When you make payments to us, through any means;

  • When you use our services or through your interactions with our officers and employees and third parties acting on our behalf;

  • When we receive your personal data from third parties or through third parties acting on your behalf; and

  • When we collect publicly available information about you.

4. What data we may collect

We may collect and process the following types of personal data:

  • Your name, address, email address, telephone number and other contact information;

  • Details of payments that you make to us;

  • Information about your billing and payment history;

  • Details of your visits to our website and applications including, but not limited to, traffic data, location data and other communication data and the resources that you access; and

  • Details of your interactions with us, including any which occur electronically or in person.

Some of the information we collect about you may include sensitive personal data (or special category data) as defined in the Data Protection (Jersey) Law 2005 (or its replacement, the Data Protection (Jersey) Law 2018.


5. On what basis we use your personal data

We will only use your personal data when the law allows us to.  Most commonly, we will use your personal data in the following circumstances:

  • Where we need to perform the contract we are about to enter into or have entered into with you;

  • In certain circumstances, where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests; and

  • Where we need to comply with a legal or regulatory obligation.


6. What we use your personal data for

EDP and/or persons acting on our behalf may process your personal data for any of the following purposes, depending on the capacity in which you deal with EDP:

  • To service and administer your EDP account and to carry out our obligations arising from any contracts entered into between you and us in respect of the provision of our services;

  • To ensure that the content on our website and applications is presented in the most effective manner for you;

  • To conduct appropriate credit and privacy risk assessment;

  • To manage our business and ensure the protection of our own financial interests;

  • For monitoring and assessing compliance with EDP’s policies and standards;

  • For promotional and marketing materials and activities, including photos and videos;

  • To provide you with requested services;

  • To identify persons authorised to deal with us on behalf of our clients;

  • In order to ensure the security and access of our systems, premises, platforms and secured website and applications; and

  • Other purposes reasonably ancillary to the above.


7. When we may disclose your personal data

We may disclose your personal data to the following:

  • To third party data processors who process your personal data on our behalf (such as our IT systems providers, debt collection agencies);

  • To third party service providers who are themselves data controllers such as professional advisers, banks and other service providers;

  • To other financial institutions or regulatory bodies with which personal data and other information is shared for fraud and crime prevention and credit risk assessment/mitigation;

  • To any national and/or international regulatory, enforcement or exchange body or court where we are required to do so by applicable law or regulation or at their request; and

  • To any central or local government department and other statutory or public bodies as required.


8. Data security

EDP uses up-to-date data storage and security techniques to protect your personal information from unauthorised access, improper use or disclosure, unauthorised modification or unlawful destruction or accidental loss.

All our employees and any third parties we engage with to process your personal information are obliged to respect the confidentiality of your information.


9. International transfers (or other jurisdictions)

We do not transfer your personal data outside the European Economic Area (EEA).


10. How long we retain personal data

We will retain your personal data for as long as necessary to fulfil the purpose for which it was collected.

Once those purposes are completed we then have legal and regulatory obligations in connection with data retention which we need to fulfil.

Additionally, we may also retain personal data in some circumstances for a period of at least ten years in order to ensure that we are able to answer and deal with any queries, complaints, tax enquiries or investigations or any legal proceedings which may arise.


11. Cookies

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies.  If you disable or refuse cookies, please note some parts of this website may become inaccessible or not function properly.  

Please visit: http://www.aboutcookies.org.uk for more information about cookies.


12. Your rights

You have the right to apply for a copy of the personal data we hold about you and to have any inaccurate personal data about you rectified.  

In some circumstances you may also have the right to ask us to erase your personal data, port it to another data controller to you or a third party, restrict its processing or object to its processing.  Where the data has been collected based on your consent, you will also have the option to withdraw our consent (but this will not affect the processing of any information prior to you withdrawing that consent).


13. Changes to the privacy notice and your duty to inform us of changes

It is important that the personal data we hold about you is accurate and current.  Please keep us informed if your personal data changes during your relationship with us.