Introduction

We take your privacy very seriously. Please read this privacy policy carefully as it contains important information on who we are and how and why we collect, store, use and share your personal information. It also explains your rights in relation to your personal information and how to contact us or supervisory authorities in the event you have a complaint.

We collect, use and are responsible for certain personal information about you. When we do so we are subject to the General Data Protection Regulation, which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controller’ of that personal information for the purposes of those laws.

It would be helpful to start by explaining some key terms used in this policy:

We, us, our Edge IT Consulting Limited, Devonshire Business Centre, Works Road, Letchworth, Hertfordshire, SG6 1GJ
Personal information Any information relating to an identified or identifiable individual
Special category personal information Personal information revealing racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership

Genetic and biometric data

Data concerning health, sex life or sexual orientation

Personal information we collect about you

We may collect and use the following personal information about you:

  • your name and contact information, including email address and telephone number and company details
  • Information to enable us to check and verify your identity
  • your contact history, purchase history and saved items
  • information to enable us to undertake credit or other financial checks on you
  • Information about how you use our website, IT, communication and other systems
  • your responses to surveys

This personal information is required to provide products and/or services to you. If you do not provide personal information we ask for, it may delay or prevent us from providing products and/or services to you.

How your personal information is collected

We collect most of this personal information directly from you—in person, by telephone, text or email and/or via our website and apps. However, we may also collect information:

  • from publicly accessible sources, eg Companies House or HM Land Registry;
  • directly from a third party, eg:
    • our business partners who we work with to deliver services to our clients;
    • our clients;
    • credit reference agencies;
    • customer due diligence providers;
  • from a third party with your consent
  • from cookies on our website—for more information on our use of cookies, please see our cookies policy
  • via our IT systems, eg:
    • automated monitoring of our websites and other technical systems, such as our computer networks and connections, CCTV and access control systems, communications systems, email and instant messaging systems;

How and why we use your personal information

Under data protection law, we can only use your personal information if we have a proper reason for doing so, eg:

  • to comply with our legal and regulatory obligations;
  • for the performance of our contract with you or to take steps at your request before entering into a contract;
  • for our legitimate interests or those of a third party; or
  • where you have given consent.

 

A legitimate interest is when we have a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests.

The table below explains what we use (process) your personal information for and our reasons for doing so:

What we use your personal information for Our reasons
To provide products and/or services to you For the performance of our contract with you or to take steps at your request before entering into a contract
To prevent and detect fraud against you or Edge IT Consulting Limited For our legitimate interests or those of a third party, ie to minimise fraud that could be damaging for us and for you
Conducting checks to identify our customers and verify their identity

Screening for financial and other sanctions or embargoes

Other processing necessary to comply with professional, legal and regulatory obligations that apply to our business, eg under health and safety regulation or rules issued by our professional regulator

To comply with our legal and regulatory obligations
Gathering and providing information required by or relating to audits, enquiries or investigations by regulatory bodies To comply with our legal and regulatory obligations
Ensuring business policies are adhered to, eg policies covering security and internet use For our legitimate interests or those of a third party, ie to make sure we are following our own internal procedures so we can deliver the best service to you
Operational reasons, such as improving efficiency, training and quality control For our legitimate interests or those of a third party, ie to be as efficient as we can so we can deliver the best service for you at the best price
Ensuring the confidentiality of commercially sensitive information For our legitimate interests or those of a third party, ie to protect trade secrets and other commercially valuable information

To comply with our legal and regulatory obligations

Statistical analysis to help us manage our business, eg in relation to our financial performance, customer base, product range or other efficiency measures For our legitimate interests or those of a third party, ie to be as efficient as we can so we can deliver the best service for you at the best price
Preventing unauthorised access and modifications to systems For our legitimate interests or those of a third party, ie to prevent and detect criminal activity that could be damaging for us and for you

To comply with our legal and regulatory obligations

Updating and enhancing customer records For the performance of our contract with you or our clients or to take steps before entering into a contract

To comply with our legal and regulatory obligations

For our legitimate interests or those of a third party, eg making sure that we or our clients can keep in touch with our customers or our clients customers

Statutory returns To comply with our legal and regulatory obligations
Ensuring safe working practices, staff administration and assessments To comply with our legal and regulatory obligations

For our legitimate interests or those of a third party such as clients, eg to make sure we are following our own internal procedures and working efficiently so we can deliver the best service to you and our clients

Marketing our services and those of selected third parties to:

—existing and former customers;

—third parties who have previously expressed an interest in our or our clients services;

—third parties with whom we have had no previous dealings.

For our legitimate interests or those of a third party, ie to promote our or our clients business to existing and former customers
Credit reference checks via external credit reference agencies For our legitimate interests or those of a third party, ie to ensure our or our clients customers are likely to be able to pay for our products and services
External audits and quality checks, eg for ISO or Investors in People accreditation and the audit of our accounts For our legitimate interests or a those of a third party, ie to maintain our accreditations so we can demonstrate we operate at the highest standards

To comply with our legal and regulatory obligations

 

The above table does not apply to special category personal information, which we will only process with your explicit consent.