CAP Security GDPR Policy
We are committed to protecting and respecting your privacy. This policy sets out the basis on which any personal data that we collect from you or that you provide to us will be processed.
The term personal data refers to information such as your name, email address, mailing address, telephone number or any other data that can be used to identify you.
By using our website and providing us with any personal data, you are giving us your explicit consent that all personal data that you submit may be processed by us for the purpose of dealing with your enquiry, subject to compliance with any relevant UK or EU law.
The processing of data will be limited to those on a need to process basis. Private data will not be left around in such a way that it can be inappropriately viewed and will only be issued to CAP Security staff if there is a requirement for them to do use the data.
We take the security and confidentiality of your personal data very seriously. We work within secured premises. All computers and software used to store, process or handle your data are up to date, password protected and run the latest anti-spam anti-virus software. If a storage device such as a computer is to be disposed of, all data will be removed from such prior to its destruction.
We are continually improving new functionality and features to our website and office processing systems. Because of these ongoing changes, as well as changes in the law and the nature of technology, our data practices will change from time to time. When it proves necessary to change our GDPR policy, we will post any changes on our website and provide all those concerned with a hardcopy upon request.
We keep your personal data for as long as reasonably necessary for the purpose for which it was collected or to comply with any local or international legal requirements.
We do not keep or obtain any information from you if you simply visited our website. The only information that we might process or keep is data you have provided within a form or questionnaire on our website.
Under some circumstances, we will be required to pass your data to a third party. You will be made aware of this prior to us doing so and any third party would need to process your personal information and treat it with the same confidentiality as ourselves.
Sharing of Data
From time to time we will need to share your data with a third party, for example with a sub-contractor, a local authority or a housing association. We will always do so firstly with your permission. We will ensure that any third party has a current and compliant GDPR Policy which they are working to and upon request will provide you with full contact details and a link to any third party GDPR Policy.
You have the right to request that your data (in full or part of) is no longer stored by us. Any request for deletion of data will need to be in writing (an email would be acceptable). We will need to confirm the source of the request and upon doing so will delete the required data. You also have the right at any time to ask us what data we hold and for a hardcopy of such. This would normally be provided in email format.
By supplying us with your data you will be allowing us to process and store such information for the purpose of which it was given unless at the time the data is provided you make a request for us not to store your details.
We see no reason for any of the data we hold to pass beyond the borders of the UK and most certainly this is something that we would not normally do under normal circumstances. If circumstances were such that there was a need to pass your data beyond the boundaries of the UK, we would first seek your permission to do so.
CAP Security are inspected by the SSAIB (Security Systems and Alarm Inspection Board). If a security system is installed by CAP Security and an SSAIB Certificate of Compliance is provided, the client/customer details will be passed to the SSAIB in order to complete and obtain the required Certificate of Compliance, thus meaning the SSAIB would hold data enabling them to identify our client/customer. The SSAIB can be contacted and their GDPR Policy viewed via their website which is www.ssaib.org or via email at email@example.com. The SSAIB privacy notices can be viewed at https://ssaib.org/page/privacy-policy—home-owner or https://ssaib.org/page/privacy-policy.
On occasion, we will be required to process personal information provided by a third party such as a local authority, charity or housing association. Such processing will be limited to the minimum required in order to carry out the instructions of the third party requiring works to be carried out.
When working for a third party, CAP Security from time to time will employ a sub-contractor in order to complete works such as electrical, building or welding. Such sub-contractors would need to be approved by our third party customer prior to their employment.
In order to carry out daily routine work, CAP Security staff will be required to carry the personal data of customers in order for them to attend site, complete works and update records. Any such data in hard format will be recorded and logged out to the staff member and then its return logged in and its destruction will usually be immediate and by a cross-shredder.
In the unlikely event that a breach of data was to occur, all related parties will be informed as soon as possible by the data processor at CAP Security.
The data controller is Mr Jim Siepe who can be contacted on 0117 9657692 or by email at firstname.lastname@example.org or in writing at Kingswood House, South Road, Kingswood, Bristol, BS15 8JF. If you have any enquiries as to how your data is being processed or what information is being held, please do not hesitate to contact our data controller using the above details.
What Personal Information Do We Collect
Your personal information that we would normally collect would be your name and address, telephone numbers and an email address and possibly details such as a husband, wife or partner. We would ask for the details of the second contact for security reasons so that we would feel that we are able to respond to their enquiry knowing who they were if such an enquiry was ever made.
Access to Personal Information
We try to be as open as we can in terms of giving people access to their personal information. Individuals can find out if we hold any personal information by making a ‘subject access request’ under the General Data Protection Regulations 2016. If we do hold information about you we will give you a description of it, tell you why we are holding it, tell you who it could be disclosed to and let you have a copy of the information in an intelligible form.
Under the General Protection Regulations 2016, you have rights as an individual which you can exercise in relation to the information we hold about you. You can read more about these rights at https://ico.org.uk/for-the-public/is-my-information-being-handled-correctly.
Complaints or Queries