Privacy & Cookie Policies.
Introduction.
Praetura Commercial Finance Limited (“PCF”, “we” or “us”) is committed to protecting the privacy and security of your personal information in accordance with applicable UK data protection laws, including the General Data Protection Regulation (“GDPR”).
Purpose of this Privacy Policy and Contact Details.
This privacy policy describes how PCF collects and uses your personal data. As a “data controller”, we are responsible for deciding how we collect and use personal information about you and for the information contained in this privacy notice.
We may process your personal data in the course of our relationship with you in a number of ways, including:
- When you use our website https://www.praeturacf.com/
- When you contact or request information from us;
- When you are seeking to engage our services or solicit our business as a customer of yours; and
- When you contact us directly or via an introduction from anyone with whom we have an existing business relationship.
It is important that you read this notice so that you are fully aware of how and why we are using your personal data. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact our Data Privacy Officer as indicated below:
Contact: Nicola Woodhams (Data Privacy Officer)
Address: Level 8, Bauhaus, Quay Street, Manchester, M3 3GY
The Data We Collect About You.
Personal data means any information from which a person can be identified. We collect, use, store and transfer different kinds of personal data about you, depending on the nature of our relationship with you, including:
- Basic information: Such as your name (including name prefix or title), the company you work for, your title or position and your relationship to our other contacts (if applicable);
- Contact information: Such as your postal address, email address and phone number(s);
- Information collected about you, including via our website: Such as information from your visits to our website including your internet protocol (IP) address, your login data, and any information you provide when you register or contact us via our website;
- Identification and background information: Such as information provided by you or collected by us as part of our business acceptance processes, in order to comply with our regulatory requirements;
- Marketing and communications information: Such as your preferences in receiving marketing information from us and our third parties and your communication preferences; and
- Any other information: Including information relating to you which you may provide to us. In certain circumstances, we may be required to carry out Enhanced Due Diligence (“EDD”) checks to comply with our obligations under the Money Laundering Regulations 2017. These enhanced checks may reveal information about criminal convictions or information about an individual’s political opinions and associations and/or other sensitive personal data (also referred to as special categories of personal data). We will only collect and process such information to the extent necessary to comply with our regulatory obligations and in accordance with the applicable data protection laws.
What lawful bases do we rely on to use your personal data?
We will only use your personal data when the law allows us to, including:
- To perform our contractual obligations towards you or to take steps before entering into a contract with you or the organisation you work for;
- For our legitimate interests (or those of a third-party) and where your interests and fundamental rights do not override those interests. Our legitimate interests are to conduct our business in an efficient, compliant and profitable manner; and/or
- To comply with our legal or regulatory obligations.
Marketing
We may contact you by telephone and/or e-mail to let you know about our products, services, events and activities, which we feel may be of interest to you. We will only contact you for such purposes if we have the legal right to do so under the applicable data protection laws.
Opting Out
You can ask us to stop sending you marketing messages at any time by contacting us at any time by telephone on 0161 302 6313 or emailing nicola.woodhams@praeturacf.com
Cookies.
A cookie is a small file which asks for permission to be placed on your computer’s hard drive. Once you agree, the file is added, and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual.
The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used.
This helps us to analyse data about webpage traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us to provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
Disclosure of your personal data.
We may have to share your personal data with third parties. When we do, we require them to uphold best practices in relation to the security of your personal data and to treat it in accordance with the law.
International transfer.
If we need to transfer your personal data outside the European Economic Area (EEA), we will ensure that any transfer of your data will be subject to appropriate safeguards and remedies in the unlikely event of a security breach.
Data security.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, altered, disclosed or accessed in an unauthorised way. In addition, we limit access to your personal data to those employees, members, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have in place procedures to deal with any suspected personal data breach and will notify you and the Information Commissioner’s Officer (ICO), the UK Supervisory Authority for data protection issues, of a breach where we are legally required to do so.
Data retention.
We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, including satisfying any legal, accounting or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances we may anonymise your personal information so that it can no longer be associated with you, in which case we may use such information without further notice to you. Once our processing of your personal data is no longer necessary, we will securely destroy your personal information in accordance with applicable laws and regulations.
Your rights as a Data Subject.
As a data subject, you have the right to, by law:
Request access to your personal information – This is known as a Data Subject Access Request and it enables you to request any personal data of yours which we hold on file.
Request correction of the personal information that we hold about you – This enables you to have any incomplete or inaccurate information we hold about you corrected.
Request erasure of your personal information – This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it or where you have exercised your right to object to processing or where we are required to erase your personal data to comply with applicable laws.
Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
Object to processing of your personal information – Where we are relying on a legitimate interest but you to feel such processing of your personal data impacts on your fundamental rights and freedoms, you may object. You also have the right to object where we are processing your personal information for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate reasons to process your information which override your rights and freedoms.
Request the restriction of processing of your personal information – This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it, or if you have objected to our use of your personal data but we need to verify whether we have overriding legitimate grounds to use it.
Request the transfer of your personal information to another party – This right applies if data is supplied by a data subject and the processing is carried out by automated means. We will not process any of the personal data provided by you by automated means.
Please contact us if you wish to exercise any of the rights set out above. Please note that if you request erasure, object to our processing of your personal data or request the restriction of our processing of your personal data we may not be able to provide our services.
You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may not be able to comply with the request.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer, if your request is particularly complex or if you have made a number of requests. In this case, we will notify you and keep you updated.