Data Protection Legislation means the Data Protection Act 2018 (also known as UK GDPR) as amended, updated and re-enacted from time to time, the legislation on the protection of individuals with regard to the processing of Personal Data and on the free movement of such data, the Data Protection Act 2018 and all local laws or regulations giving effect to any applicable legislation (as any such legislation may be amended, extended or re-enacted). Definitions in this policy shall, so far as the context permits and unless otherwise stated, have the meanings given to them in the Data Protection Legislation.
Collection of Personal and Non-Personal Information
FlexMR will only collect personal information that we have explicit permission to hold and use via voluntary submission. Personal information is any data which identifies you including, for example, name, email address and contact details. When submitting an enquiry form, we may ask you to provide such information that is relevant to the delivery of the requested content and/ or services. We may use this information to contact you in order to explore whether or not there is an opportunity for us and you to work together. We will always ask for explicit consent before using your information for marketing purposes.
FlexMR passively collects non-personal information, that is not unique to you, as you browse the FlexMR website. This information can include: your IP address, browser type, domain names and access times. Web logs and cookies are used to support this data collection, which is used by FlexMR for the operation of our service, maintain quality of service and provide general, non-personally identifiable usage statistics.
Use of Data and Personal Information
Personal information collected via the FlexMR website will be held for a maximum of 12 months if you do not opt-in to receiving further communication from us. This does not affect your right to be forgotten, which can be exercised at any time by sending an email request to email@example.com.
All such third parties are prohibited from using your personal information except to provide these services to FlexMR, and are required to maintain the confidentiality of your information. FlexMR does not use or disclose sensitive personal information. FlexMR web sites will disclose your personal information, without notice, only if required to do so by law or in the good faith belief that such action is necessary to: (a) conform to the edicts of the law or comply with legal process served on FlexMR or the site; (b) protect and defend the rights or property of FlexMR; and, (c) act under exigent circumstances to protect the personal safety of users of FlexMR, or the public.
Your data will only be used for general marketing purposes if you explicitly opt-in to receiving marketing communications from FlexMR. If requesting downloadable content from the FlexMR website, we may send relevant follow-up information about the content in no more than three communications, if we believe it to be relevant. We may also contact you to explore whether a business relationship is appropriate if we believe there is a genuine, legitimate cause to do so. This does not affect your rights, including your right to object, which may be enacted at any time.
FlexMR secures the personally identifiable information you provide in a controlled, secure environment, protected from unauthorized access, use or disclosure. When personal data is transmitted to the FlexMR website, it is protected through the use of encryption, such as the Secure Socket Layer (SSL) protocol. Where FlexMR has given you a password (or you have chosen a password) which enables you to access certain parts of the site, you are responsible for keeping that password confidential.
Unfortunately, the transmission of information via the internet is not completely secure. Although FlexMR will do its best to protect your personal data, the security of your data transmitted to the site cannot be guaranteed; any transmission is at your own risk. Once FlexMR has received your information, strict procedures and security features will be used to prevent unauthorised access.
Your personal information is stored on secure servers managed by Thought Studio Limited t/a The Creative Branch. Information collected from the use of the site, including personal information, may be stored on secure servers located outside the European Economic Area ("EEA") in countries whose privacy laws are not as rigorous as those of the EEA. However, we always take steps to ensure the security of your data. By using the site, you consent to the transfer of your personal information to countries outside the EEA.
Subject Access Rights
The Data Protection Act 2018 gives you the right to access any information held on you. If you would like to access the information, we have collected about you via the site, correct or update your information, you may email us at firstname.lastname@example.org. To protect your privacy and security we will take reasonable steps to verify your identity before granting access or making any such cancellations, corrections or updates.
On May 25th 2018, a landmark new policy, General Data Protection Regulation (GDPR), came into effect across the European Union (EU). This policy enhances the rights of individuals and places greater obligations on organisations to process data in a fair, responsible manner. FlexMR Ltd, as a UK organisation that holds data protection and information security central to its business, welcomes the introduction of this policy.
In order to deepen our commitment to the security of our customers’ data, FlexMR has implemented an ISO-based Information Security Management System (ISMS) to manage data in accordance with recognised standards including ISO27001 and Cyber Essentials, in addition to imposing high standards for Information Security, Privacy, and transparency.
FlexMR complies with all applicable GDPR provisions and works together with customers and partners to address contractual obligations for products and services. To date, FlexMR has implemented appropriate technical and organisational measures, including the appointment of responsible officers within the business to manage and deliver Data Protection and Information Security, to ensure as a Data Processor it meets the requirements of GDPR.
FlexMR appreciates the impact of GDPR on its customer base, and its partners, and works with all parties in providing technical solutions to support their GDPR obligations, whether with standard products or as value-added solutions.
If you have any questions relating to the approach FlexMR follows to data protections and security, please contact your account manager, or the nominated Data Protection Officer who can be reached at email@example.com.
Changes to this Policy
FlexMR may update this policy at any time to reflect company and customer feedback. Changes to this policy will be posted on this site. FlexMR encourages you to periodically review this Policy to be informed of how FlexMR is protecting your information.
Copyright © FlexMR 2021. All rights reserved.FlexMR Limited is a limited company registered in England and Wales.Registered office: Shoreline Business Park, Milnthorpe, Cumbria, LA7 7BFRegistered number: 6026830