dde Pagan Village GDPR compliance

GDPR compliance

Last updated: 4 November 2023

GDPR compliance

Our Updated Privacy Policy with specific reference to this website

This privacy policy is for this website; pagan-village.co.uk and served by Pagan Village based in 4a East Street, Littlehampton, West Sussex, BN17 6AX. It governs the privacy of its users who choose to use it. It explains how we comply with the GDPR (General Data Protection Regulation), the DPA (Data Protection Act) and the PECR (Privacy and Electronic Communications Regulations).

This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR, DPA & PECR are adhered to. Additionally it will explain the use of cookies or software and the download of any documents, files or software made available to you (if any) on this website. Further explanations may be provided for specific pages or features of this website in order to help you understand how we, this website and its third parties (if any) interact with you and your computer / device in order to serve it to you. Our contact information is provided if you have any questions.

Our website is used to promote our business and you are welcome to contact us using the contact form or by direct email to contact@pagan-village.co.uk and our listed telephone numbers for communications. We are a business to business organisation and we do not work for individuals.

WE DO NOT add you to a database and no digital or written records are kept, unless we form a contract to carry out work for you. If you decide not to employ us we will not contact you again.

Most of our inbound work comes from advertising, this web site and client referrals. We do not actively seek new business on a cold call basis.

We and this website complies to the DPA (Data Protection Act 1998) and already complies to the GDPR (General Data Protection Regulation) which comes into effect from May 2018. We will update this policy accordingly after the completion of the UK's exit from the European Union.

Legal definitions of GDPR

Data Controller: a controller determines the purposes and means of processing personal data.

Date Processor: a processor is responsible for processing personal data on behalf of a controller

Data Subject: Natural person meaning anyone living within Great Britain and the European Economic Community

Personal Data: The General Data Protection Regulation applies to ‘personal data’ meaning information relating to an identifiable person, identifiable for example by home address, email address, passport number.

Processing: means any operation which is performed on personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, disclosure by transmission or dissemination.

Third Party: A natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.

Which data do we collect from clients and suppliers?

We collect and process personal data about individuals, sole traders and unincorporated partnerships, and about limited companies where this relates to key people. But only if we are processing your data as a customer or prospective customer to Pagan Village, for a service or associated product, or as a supplier, in relation to a service or supply made to Pagan Village.

How do we collect data from clients and suppliers ?

From your application as a customer or prospective customer to Pagan Village, for a service or associated product.

From correspondence from you as a supplier, in relation to a service or supply made to Pagan Village.

From third parties such as credit reference agencies, fraud prevention agencies, agents working on your behalf, government and law enforcement agencies.

What data do we collect from clients and suppliers ?

We collect and process from you personal data such as your name, residential and email addresses, country of residence, bank account details of suppliers when necessary for making payments and any other information we have asked you to provide.

How dows the law protect our clients and suppliers ?

Data Protection law says that we are allowed to use personal information only if we have a proper reason for doing so, and that we must have one of the following reasons:

  • To fulfil a contract that we have with you.
  • When it is our legal duty.
  • When it is in our legitimate interest.
  • When you consent to it.

A legitimate interest is when we have a business or commercial reason to use your information, including but not limited to internal administrative purposes, product development and enhancement, preventing fraud, ensuring network and information security. This also includes the retention of data required under law for accounting and taxation purposes for Pagan Village.

How we will use the personal data from our clients and suppliers

In the preparation and performance of contracts to which you are a party such as a customer or a supplier and in keeping such financial details as necessary to allow us to receive payments from you or to make payments to you.

To help us prevent or detect fraud and other financial crimes.

To meet our legal obligations.

To communicate with you and provide information on specific services when you request it.

NOTE: We do not at present send out unsolicited marketing information or news letters. Updates to our services are promoted through our website and via social media.

Why we need your personal data and what happens if you fail to provide the requested information

We require your personal data as it is a contractual requirement or a requirement necessary to enter into a contract.

It is unlikely that we will be able to enter in to a contract, or maintain an existing contract with you, either as a customer or as a supplier.

how long do we retail the data of clients and suppliers

We keep your personal data no longer than reasonably necessary . Typically we will retain your data for the purposes of :

  • Fulfilling our business purposes.
  • Compliance with legal and regulatory requirements.
  • For any legal claims.

Sharing the personal information of our clients and suppliers.

We may share your personal information with our service providers and third parties who provide services on our behalf, including but not limited to:

  • Agents and administrators who we use to help run your accounts.
  • Fraud prevention and law enforcement agencies.
  • Regulators, governments, courts, dispute resolution bodies and auditors.

We will do this to respond to enquiries and complaints; undertake transactional analysis; support the provisions of service; assist in the detection of fraud and comply with legal obligations.

How do we protect our clients and suppliers data ?

To protect the security of your personal data we implement appropriate technical and organisational security measures which include physical and technical security safeguards and a governance model that ensures that adequate policies, procedures and controls are in place.

Transferring of Data abroad.

We do not transfer data outside the EEA.

Automated decision making.

We do not use any automated decision making in our business.

Our clients and suppliers rights and their personal data.

Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:

The right to request a copy of the personal data which we hold about you.

The right to request that we correct any personal data if it is found to be inaccurate or out of date.

The right to request that your personal data is erased where it is no longer necessary to retain such data.

The right to request that we provide you with your personal data and where possible, to transmit that data directly to another data controller where applicable.

The right, where there is a dispute in relation to the accuracy or processing of your personal data, to request that a restriction is placed on further processing.

The right to object to the automated processing of personal data except where used to detect, prevent and investigate fraud and other financial crimes.

Changes to our compliance policies

Any changes we may make to our privacy policy in the future will be posted on this page, and where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy. GDPR compliance is important to us, so if you believe we have missed something important from the content of this statement please email us.

How to make a complaint

To exercise all relevant rights, queries or complaints, please in the first instance contact our Data Representative on the company email address or by post. If this does not resolve your complaint to your satisfaction you have the right to lodge a complaint with:

The Information Commissioners Office, on 0303 1231113 or via email https://ico.org.uk/global/contact-us/email/ or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, England.