GDPR - Client policy
1 Privacy Notice
1.1 We ask that you read this privacy notice carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us, and supervisory authorities in the event you have a complaint.
2 Who we are
2.1 LAB UK Limited collects uses and is responsible for certain personal information about you. When we do so we are regulated under the General Data Protection Regulation which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controller’ of that personal information for the purposes of those laws.
3 The personal information we collect and use
3.1 Information collected by us
3.1 In the course of; Air & Bulk Testing, Asbestos Surveying & Bulk Identification we collect the following personal information when you provide it to us:
3.1.1 Contact details: Name, email and phone number of staff responsible for booking air monitoring/placing orders
3.1.2 Details of visits to the Sites: Site address, photos of the work area, phone numbers and names and signature of site contacts
3.1.3 Correspondence: Name, email and phone number of office staff responsible for reports and invoice receipts
3.1.4 Testing & Survey feedback responses: Information from testing & survey feedback, if you choose to respond to them
4 How we use your personal information
4.1 We use your personal information to:
4.1.1 To provide you with our services: We use your personal data to effectively take bookings, attend site to carry out our services, construct the reports.
4.1.2 To comply with our legal obligations: Provide proof for UKAS and other governing agencies.
4.1.3 To maintain our records and improve accuracy: We process your personal data in the course of maintaining and administering our internal records.
4.1.4 To respond to enquiries, complaints and disputes: We use the personal data we hold about you to help us respond to any enquiries or complaints you have made, or deal with any dispute which may arise in the course of us providing our products and services to you, in the most effective manner.
5 Who we share your personal information with
5.1 We may be required to share above noted personal data with our external quality control consultant, UKAS personnel and external IT support and suppliers and service providers.
5.2 If you would like a list of these please contact us. This data sharing enables us to adhere to UKAS/HSE requirements, legal obligations in order to protect the rights, property, or safety of our business and our customers as well as maintain an effective database and data backup system.
5.3 None of these third-party recipients are based outside the European Economic Area.
5.4 We will share personal information with law enforcement or other authorities if required by applicable law.
5.5 In certain circumstances, we process your personal data only after obtaining consent to do so for the purposes of sharing your name, email, phone number and address with new potential clients; forwarding your reports where they were requested by third party; and discussing details of specific site with third parties to deal with complaints and legal claims.
6 Whether information has to be provided by you, and if so why
6.1 The provision of all of above noted personal data is required from you to enable us to carry out our services to you and comply with UKAS/HSE requirements. We will inform you at the point of collecting information from you, whether you are required to provide the information to us.
7 How long your personal information will be kept
7.1 We will hold your information for different lengths of time depending on the type of data.
7.2 All Air Test reports and their supporting data is retained for 7 years (the period we are required to retain this information by applicable UK legislation (5 years), our Indemnity Insurance (6 years) and our Company Quality Manual (7 years)
7.3 As soon as it is no longer necessary for us to keep your personal data, it will be securely deleted.
8 Reasons we can collect and use your personal information
8.1 We rely on legitimate interests as the lawful basis on which we collect and use your personal data. Our legitimate interests are to enable us to carry out our services to you, to ensure that our services are presented in the most effective manner for you. To respond to any enquiries or complaints you have made, ensure effective operational management and internal administration of our business, document retention, compliance with regulatory guidance and exercise or defence of legal claims or deal with any dispute which may arise and to comply with UKAS/HSE requirements
8.2 We will not transfer your personal information outside the European Economic Area (EEA).
9 Your rights
9.1 Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:
9.1.1 fair processing of information and transparency over how we use your use personal information
9.1.2 access to your personal information and to certain other supplementary information that this Privacy Notice is already designed to address
9.1.3 require us to correct any mistakes in your information which we hold
9.1.4 require the erasure of personal information concerning you in certain situations
9.1.5 receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations
9.1.6 object at any time to processing of personal information concerning you for direct marketing
9.1.7 object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you
9.1.8 object in certain other situations to our continued processing of your personal information
9.1.9 otherwise restrict our processing of your personal information in certain circumstances
9.2 For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.
9.3 If you would like to exercise any of those rights, please:
9.3.1 email, call or write to us
9.3.2 let us have enough information to identify you
9.3.3 let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill), and
9.3.4 let us know the information to which your request relates (including any report number or site address, if you have them)
10 Keeping your personal information secure
10.1 We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
10.2 We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
10.3 If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.
11 How to complain
11.1 We hope that we can resolve any query or concern you raise about our use of your information.
11.2 The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/concerns/ or telephone: (0303 123 1113).
12 Changes to this privacy notice
12.1 This privacy notice was published on 05th July 2018 and last updated on 05th July 2018
12.2 We may change this privacy notice from time to time when we do we will inform you via email.
13 How to contact us
13.1 Please contact us if you have any questions about this privacy notice or the information we hold about you.
Please call us on +44 01268 590768+44 01268 590768 or use our contact form.