The personal data referred to in this Policy is that relating to anyone with whom we have a business relationship including, but not limited to, our customers or potential customers.
The personal data referred to may be obtained electronically (by enquiries sent through the Cyclone Boats website) or other means (for example, business cards, reservation forms, telephone calls, letters, orders, contracts, etc).
Cyclone Boats Limited is the controller and responsible for your personal data.
We have appointed a data protection controller who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the data protection controller using the details set out below.
Our full details are:
Full name of legal entity: Cyclone Boats Limited
Name or title of data protection controller: Jonathan Thurston
Email address: firstname.lastname@example.org
Postal address: Unit 2-3, Ballard Business Park, Cuxton Rd, Strood, Rochester, Kent ME2 2NY
You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
We only collect and use personal data that is relevant and necessary for the purposes of answering enquiries regarding Cyclone Boats products. We do not keep it for any longer than required.
The categories of personal data are the following:
We only collect and use personal information about you when the law allows us to do so. This means we will use your information only for the specific purpose it was given or obtained, namely to answer enquiries relating to those of our products that are of interest.
Your details will not be entered on a central database and not used for marketing purposes.
You also have certain other rights in relation to your personal data, again see Section 7 below.
We process your information electronically and/or manually, and may contact you by email, telephone or text message.
We create and maintain electronic files in order to record essential information to enable us to conduct our relationship with and obligations to you. The information contained in these files is kept secure in the following ways:
We never, under any circumstances, sell personal data that we hold. However, where it is necessary and applicable (and it complies with data protection legislation), or is legally required, we may share personal information about you with:
We have not in the past had cause to transfer personal data to another country, but should the need arise, we will do so in accordance with data protection legislation.
How to access personal information held about you
Individuals have a right to make a subject access request to gain access to personal information that any organisation holds about them.
If you make a subject access request of us in respect of any information we hold about you, we will:
If you would like to make a subject access request, please contact us.
There is no charge to provide this information, except in exceptional circumstances (for example, if the request is manifestly unfounded or excessive, or if you request further copies of the data already supplied; in these cases the charge will be based on the administrative costs incurred).
Under data protection legislation, individuals have certain rights regarding how their personal data is used and kept safe. You have the right to:
You may also have the right for your personal information to be transmitted electronically to another organisation in certain circumstances.
If you require your record to be removed or amended, please contact us via the contact details on our website.
The length of time we retain information on potential customers who have enquired via our website is until such time as that interest results in them becoming a customer or when customers/contacts ask to be removed from our records. However, we may also remove records as the result of an internal audit where it is apparent that no contact has been received for some time, when we will assume that there is no further interest.
Notwithstanding the above timescales, you are at liberty to ask us to delete your information at any time (see Section 7 above). If there are any consequences arising from your doing so, we will explain this at the time.
Any information that we are requested to remove, or that which is no longer required, is disposed of securely (ie, shredded or permanently deleted from computer systems).