To describe how we collect and use personal data about you in accordance with the General Data Protection Regulation (GDPR).
Bright Instruments will be what’s known as the “Controller” of the personal data you provide to us. We only collect basic personal data about you which does not include any special categories of personal information about you (known as Special Category Data). This does however include name, address, e-mail and telephone number.
We need to know your basic personal data in order to tell you about our products and services. We will not collect any personal data from you we do not need to provide and oversee this service to you.
We only ever use your personal data with your consent, or where it is necessary:
In any event, we’ll only use your information for the purpose or purposes it was collected for (or for closely related purposes).
We may process personal information for certain legitimate business purposes, which include some or all of the following:
where the processing enables us to enhance, modify, personalise or otherwise improve our services/communications for the benefit of our customers
Whenever we process data for these purposes we will ensure that we always keep your personal data rights in high regard and take account of these rights at all times.
When we process your personal data for our legitimate interests, we will make sure that we consider and balance any potential impact on you (both positive and negative), and your rights under data protection laws. Our legitimate business interests do not automatically override your interests – we will not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You have the right to object to this processing if you wish, and if you wish to do so please contact us on email@example.com. Please bear in mind that if you object this may affect our ability to carry out tasks above for your benefit.
We are based in the UK and we store our data within the UK. Some organisations which provide services to us may transfer personal data outside of the EU, but we will only allow them to do so if your data is adequately protected.
We will only use and store information for so long as it is required for the purposes it was collected for. How long information will be stored depends on the information in question and what it is being used for. For example, if you ask us not to send you marketing e-mails, we will stop storing your e-mails for marketing purposes (though we’ll keep a record of your preference not to be e-mailed).
We continually review what information we hold and delete what is no longer required. We will not retain your data for any longer than necessary and the longest time that we will hold your data will be six years.
We would, however, like to use your name and e-mail address to inform you of our services. This information is not shared with third parties and you can unsubscribe at any time via e-mail or on our website.
We want to ensure that you remain in control of your personal data. Part of this is making sure you understand your legal rights, which are as follows:
Please keep in mind that there are exceptions to the rights above and, though we will always try to respond to your satisfaction, there may be situations where we are unable to do so.
If you wish to raise a complaint on how we have handled your personal data, you can contact us through firstname.lastname@example.org and we will investigate the matter.
If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner’s Office, the UK supervisory authority for data protection issues.