Proudly Serving Customers in Surrey
ITS understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of all of our customers and will only collect and use personal data in ways that are described here, and in a way that is consistent with our obligations and your rights under the law.
Information Technology Services & ITS are Trading Names of ITS [Surrey] Ltd.
Registered in England under company number 06335737 VAT number: 664 1568 21. Registered address: 8-10 South Street, Epsom, Surrey, KT18 7PF, United Kingdom.
ITS will be what’s known as the ‘Controller’ of the personal data you provide to us. We only collect basic personal data about you which does not include any special types of information or location-based information. This does however include:
- Address (Business or Residential)
- Phone Number
We need to know your basic personal data in order to provide you with ongoing organisational updates and contracted or ad-hoc services in line with our overall contract with you. We will not collect any personal data from you we do not need in order to provide and oversee this service to you (lawful grounds for processing).
WHAT WE DO WITH YOUR DATA
All the personal data we process is processed by our staff in the UK however for the purposes of IT hosting and maintenance this information is located on servers within the European Union. We may store or transfer some or all of your personal data in countries that are not part of the European Economic Area (the “EEA” consists of all EU member states, plus Norway, Iceland, and Liechtenstein). These are known as “third countries” and may not have data protection laws that are as strong as those in the UK and/ or the EEA. This means that we will take additional steps in order to ensure that your personal data is treated just as safely and securely as it would be within the UK and under the GDPR.
No third parties have access to your personal data unless the law allows them to do so.
We are required under UK tax law to keep your basic personal data (name, address, contact details) for a minimum of 6 years after which time it will be destroyed. Your information we use for marketing purposes will be kept with us until you notify us that you no longer wish to receive this information. Information relating to the services we provide you will no longer be kept by us after a period of 2 years post contract end, if not before. We will dispose of this information securely. We use GDPR-compliant systems to protect your data, such as Dropbox for Business, MS Office 365 Hosted Exchange services, Secure IT Systems, and infrastructure, as well as on-site security procedures.
If at any point you believe the information we process on you is incorrect, you can request to see this information and have it corrected or deleted. If you wish to raise a complaint on how we have handled your personal data, you can contact us to have the matter investigated.
If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law, you can complain to the Information Commissioner’s Office