Who are we?
Under the purposes of data protection law, Advice Direct Scotland as data controller, are responsible for ensuring the personal information of those engaging with our services is kept safe and secure. This means we only will use your information for the purposes of monitoring, research and improving the overall efficiency of our service.
We are registered as a data controller with the Information Commissioner’s Office. Our registration number is Z9035412.
Types of data or information we collect
Your personal data encompasses any information which allows you to be identified. Any data acquired which retains your anonymity is not considered either personal data or personal information.
We may process the following data about you:
- Any information you provide either through our website or via telephone which includes your name, address, email address, contact number, gender, date of birth, financial or credit card information.
- Our forms of correspondence with you (whether via telephone or online).
- Information obtained through email or social networking tools such as Facebook, Instagram, LinkedIn or Twitter.
- Details of your visits to our website. This may include data concerning your geographical location, traffic, communication tools used, and services engaged with (further information on this can be found in the Cookies section below).
Who has access to your information?
Advice Direct Scotland will not sell or rent any personal information to third parties. Furthermore, we will not share any information with third parties for marketing purposes.
All personal data is treated confidentially and is only shared when there is a legal basis for doing so. This may include sharing information with business partners, suppliers or volunteers in order to facilitate the performance of any contract we may enter with either them or you.
Advice Direct Scotland may share details of your case with your local Trading Standards. We will not share any details without prior consent noted during your contact with us.
We may also share relevant information with advertisers who require the data provided by analytics and search engine providers to assist in the optimisation of our website.
Under certain circumstances, we may share personal information with our legal advisors for the purposes of taking advice.
How long do we keep your personal data?
Operating in line with established data protection principles, we only retain personal information from you when we have an ongoing legitimate need to do so. advice.scot has a record retention schedule which outlines our periods for retaining all personal information and this record is updated regularly. Once your information is no longer required, all data is safely destroyed.
Data protection laws give you the right to access your personal information, object to the use of your personal information and the right to restrict, erase or receive a copy of your personal information which we hold. A nominal fee for an information request may be charged to cover our costs in providing you with details of the personal information we hold about you.
You also have the right for any inaccuracies in your personal information to be correct. If the data we hold about you is inaccurate, you can request us to correct it.
We will always handle any requests in accordance with the law.
Cookies help us track various aspects of user visitations to our website. This includes the length of a user visit, their geographic location and patterns of user navigation on our site.
You can switch off cookies on your computer, although this may result in a loss of functionality when accessing our website.
How we keep your data secure
As a controller of personal data, we have in place appropriate technical and organisational measures to ensure we implement the data protection principles outlined.
Our approach to data protection is monitored by a core team involving both Senior and Junior Management. Guided by our ISO/IEC 27001:2013 accredited Information Security Management System and delivered by all personnel, our data protection approach is designed to ensure that our operations are resilient. All data we hold is stored in Tier 3 and Tier 4 Data Centres with multiple redundancies and extremely strict access requirements.
If any personal information is stored on a third party, cloud-based solution, we ensure that the third party complies with data protection principles when processing your data.
Advice Direct Scotland ensure that this policy is kept under regular review. Any updates or amendments to the document will be posted on our website. This policy was last updated in March 2019.
If you have any outstanding questions or requests regarding this policy or our privacy practices in general, you can contact us by email at email@example.com.
Alternatively, you can write to us at:
Data Protection Officer
39-69 Bothwell Street