The General Data Protection Regulation (GDPR)
The GDPR is a new European regulation for the protection of personal data that will come into force on 25 May 2018 and will be put into UK law through the Data Protection Bill which was unveiled by the government in August 2017. Before 25 May 2018, the 1998 and 2003 Data Protection Acts apply.
GDPR Privacy Notice
What personal information does Insequa Ltd hold?
Where provided, we have the names, work addresses and email addresses of post holders working for companies and organisations in the independent health and social care sectors. These include post holders working in care homes, care home groups, homecare agencies and agency groups, independent hospitals and clinics, hospital and clinic groups, mental health hospitals and clinics and dental surgery groups. We also hold this information about post holders in similar parts of the public sector, including local authority care commissioning and contracting units in all UK councils and all Clinical Commissioning Groups. In addition, we hold information relating to post holders in suppliers and advisors (e.g. lawyers, accountants, financial advisors, management consultants) to the health and social care sectors.
What does Insequa Ltd do with the data?
We use the data we collect in the following ways:
- We are a leading provider of business support for the health and social care sectors and conduct regular blogs and tweets in support of our clients. We rely on having good, up to date data to ensure we reach the right people and provide them the right information in a timely manner.
- We use the data for direct marketing purposes. Any communications that we send clearly include an ‘unsubscribe’ option.
- It is important to note that we do not sell data
- We use data for the processing of sales and the delivery of orders/services to clients.
How we collect information
- We collect data in the following ways:
- From public websites which publish contact information.
- Through our surveys. Individuals are given the opportunity to opt out from receiving emailed surveys.
- Through our sales process during which we require client’s details to invoice them and send them the products/services they order.
Insequa Ltd’s data is held in the following places:
- Our proprietary Evidenced Compliance and Evidenced Understanding systems which can only be accessed by staff working on the company’s computer networks.
- Our password-protected Zoho CRM system which is only accessible to selected staff.
If you do not wish us to use your data ourselves for marketing purposes you can:
- Request to unsubscribe via any of the direct marketing communications that we send.
- Write to our Head of Data at email@example.com or at Kestrel Lodge, Upper Hexgreave, Farnsfield, Notts NG22 8LS
Choose to ‘Unsubscribe from all’ by visiting https://www.insequa.co.uk/unsubscribe-page/
- . You can also use the preference centre to tailor what you hear from us about.
What marketing channels and on what basis can Insequa Ltd data be used after 25 May 2018?
Our communications are ‘business to business’ (B2B) and as a result we are processing data on the legal basis of ‘legitimate interest’.
- Postal Communication/Marketing – this will remain on an ‘opt-out’ channel (subject to the Mailing Preference Service (MPS) where appropriate).
- Telephone Communication/Marketing – all telephone numbers must be screened against the TPS and CTPS (Telephone/Corporate Telephone Preference Scheme) prior to being used for marketing purposes. Beyond which, this will remain an ‘opt-out’ channel.
- Email Communication/Marketing – the rules for e-mailing employees of Public Bodies and Companies are governed by the PECR (Privacy and Electronic Communication Regulations) which will be replaced by the forthcoming e-Privacy Regulations (tbc). This will remain an ‘opt-out’ channel. Private individuals are asked to opt-in to receive electronic communication and marketing from us.
What restrictions are there on the use of Insequa Ltd data for marketing?
- All communications must be relevant and proportionate.
- All communications must contain a clear opportunity to opt-out from future correspondence.
- All requests to opt-out are honoured.
- Data used for marketing must be recently downloaded (i.e. within the past month) to ensure it is as up-to-date as possible.
We process data on the basis of ‘legitimate interest’ and can make legitimate interest assessments available for viewing as required.
Insequa Ltd and GDPR
Insequa Ltd will comply with the GDPR, the Data Protection Bill and all other prevailing data protection legislation. We will actively uphold individuals’ rights under the GDPR/Data Protection Bill. We will not pass your data on to third parties, however we reserve the right to work with carefully selected and managed Data Processors who may need access to your data, within the constraints of a Confidentiality Agreement between Insequa and our Data Controller, to support us in providing our services.
Using Insequa Ltd’s websites and your privacy
There is information about your computer hardware and software that is automatically collected by Insequa Ltd. This information can include: your IP address, browser type, domain names, access times and referring website addresses. This information is used by Insequa Ltd and its subsidiaries for the operation of the service, to maintain quality of the service, and to provide general statistics regarding use of Insequa Ltd’s websites. Insequa Ltd is not responsible for the content on websites outside of the Insequa and Insequa family of websites.
The Insequa Ltd websites use “cookies” to help you personalise your online experience. A cookie is a text file that is placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.
One of the primary purposes of cookies is to provide a convenience feature to save you time. The purpose of a cookie is to tell the web server that you have returned to a specific page. For example, if you personalise Insequa pages, or register with Insequa site or services, a cookie helps Insequa Ltd to recall your specific information on subsequent visits. This simplifies the process of recording your personal information, such as billing addresses, shipping addresses, and so on. When you return to the same Insequa website, the information you previously provided can be retrieved, so you can easily use the Insequa features you customised.
You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience the interactive features of the Insequa services or websites you visit.
Security of your Personal Information
Insequa secures your personal information from unauthorised access, use or disclosure. Insequa secures the personally identifiable information you provide on computer servers in a controlled, secure environment, protected from unauthorised access, use or disclosure. When personal information (such as a credit card number) is transmitted to other websites, it is protected through the use of encryption, such as the Secure Socket Layer (SSL) protocol.
Changes to this Statement
Insequa will occasionally update this Statement of Privacy to reflect company and customer feedback. Insequa encourages you to periodically review this Statement to be informed of how Insequa is protecting your information.
Insequa welcomes your comments regarding this Statement of Privacy. If you believe that Insequa has not adhered to this Statement, please contact Insequa at firstname.lastname@example.org. We will use commercially reasonable efforts to promptly determine and remedy the problem.