iDEA may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 25/05/18 and complies with the EU General Data Protection Regulation (GDPR) as from May 25th 2018.
We may collect the following information in order to provide you with a service:
Additionally, when you visit our website we may collect information about your visit such as your IP address, your browser and device, and the pages you have viewed and when.
We may collect your information if you:
We may require this information to understand your needs and to provide you with the information that you have requested.
We will take all reasonable steps to ensure that we fully protect your rights and comply with our obligations under the Data Protection Act 1998, the Privacy and Electronic Communications (EC Directive) Regulations 2003, as amended in 2004, 2011 and 2015, and the General Data Protection Regulation (GDPR) which comes into force from 25th May, 2018.
We have a number of lawful reasons that we can use to process your personal information.
These include processing personal information where we have a legitimate interest to do so, where it is necessary to fulfil a contract, or where we are required to as a legal obligation.
Broadly speaking, legitimate interests means that we can process your personal information if:
We process personal information in order to run our business and to provide our services to you. If you choose not to provide us with this information, or do not wish us to collect and use this information in these ways, it may mean we will be unable to provide you with a service.
We may use your information in order to respond to your requests, or to provide you with a service.
We may use information collected by Google Analytics during your visit to idea.eu in order to help us improve the experience for visitors and develop new features for the future.
We may use your information to contact you from time to time to inform you about services and information about iDEA that may be of interest to you.
You can opt out of this at time by contacting us at [email protected]
We do not share your data with any other company unless a project we are undertaking for you requires third party support and you have given us permission to disclose your details.
In certain circumstances, we may be legally required to share certain data held by us, which may include your personal information, for example, where we are involved in legal proceedings, where we are complying with the requirements of legislation, a court order, or a governmental authority. We do not require any further consent from you in order to share your data in such circumstances and will comply as required with any legally binding request that is made of us.
We will keep your personal information only where it is necessary to provide you with our products or services as a customer, where required to meet our legal or regulatory obligations, and/or for as long as we have your permission to keep it.
Data security is of great importance to us, and to protect your data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure data we collect.
Notwithstanding the security measures that we take, it is important to remember that the transmission of data via the internet may not be completely secure and that you are advised to take suitable precautions when transmitting to us data via the internet.
We use the following data processors who provide us with services to our business. We ensure they have the highest levels or reliability, security, and accreditation.
In addition, we have our main server, where all project related data is stored securely. Any consent records provided to us are also stored securely as an electronic copy.
Information we may collect from you is processed in the UK and European Economic Area (EEA). Where information is processed by suppliers outside the EEA, we aim to ensure these suppliers have accreditations sufficient to acknowledge the safe handling and storage of data from the EEA.
Cookies are small text files that are sent by web servers to web browsers and can be used by web servers to identity and track users as they view different pages on a website or return to a website. They may be either persistent cookies or session cookies and may contain unique identifiers.
A persistent cookie will be stored by the browser and will remain valid until its set expiry date (unless deleted by the user before this date). A session cookie, on the other hand, will expire at the end of the user session when the web browser is closed.
This website uses the following cookies.
Cookie set: __cfuid
This cookie is used by Cloudflare to enhance the security of our website and your connection to it.
Cookies set: _gid; _gat; _ga
These cookies are used to collect information in an anonymous form to help us understand how visitors use our website. They may collect information about you, such as your location, your device and your browser.
If you'd like to learn more about cookies in general and how to manage them, visit aboutcookies.org
You have several rights in relation to how iDEA uses your information. They are:
Right to be informed
Right of access
You have the right of access to your personal information.
If you wish to receive a copy of the personal information we hold on you, you may make a data subject access request at no expense by contacting us at [email protected]
Right to request that your personal information be rectified
If your personal information is inaccurate or incomplete, you can request that it is corrected. If the request concerns sensitive data, we will update the necessary databases and store your request as a hard copy in a locked filing cabinet as well as a soft copy on our protected server.
Right to request erasure
You can ask for your information to be deleted or removed if there is not a compelling reason for iDEA to continue to hold it.
We will supply a request form for the erasure of personal data that doesn’t need to be maintained for legal obligations or exercise of official authority. In order to erase this data, we will delete all soft copies off of our server and hard copies will be shredded and disposed of safely.
Right to restrict processing
You can ask that we limit the processing of your personal information for certain reasons. This means that we are still permitted to keep your information – but only to ensure we don’t use it in the future for those reasons you have restricted.
Right to object
You can object to iDEA processing your personal information where:
A loss of personal data does not result in a data breach unless the breach results in a risk to the rights and freedoms of an individual, a detrimental effect on their reputation, financial loss, loss of confidentiality, discrimination or any significant economic or social disadvantage.
Should a data breach occur, we will:
If the breach occurs or is discovered outside normal working hours, it must be reported as soon as is practicable. The DPO or response team lead will act as a point of contact in order to coordinate a response team in carrying out the following procedure:
If you are still unhappy, you can complain to our Supervisory Authority. You can find their contact details on the ICO website.
If you have any other questions about your personal information, please contact us.
The Mill, Longnor, Shrewsbury, SY5 7PZ
+44 (0)1743 719070
Somerset House, West Wing, London, WC2R 1LA
+44 (0)20 7613 0273