Our Privacy Promise
Transparency – We will always tell you what data we’re collecting about you and how we use it. We only share your data with trusted partners and will never sell your data.
Secure – We are committed to always follow industry best practices to ensure your data is stored safely and securely. We protect the confidentiality, accuracy and availability of the information we collect about you.
Control – We will always give you control over the marketing you receive from us. You can choose the types of messages you receive and whether you want to stop receiving marketing communications.
Our lawful basis for processing your data
Labsec has assessed all six grounds for the lawful processing of personal data under the General Data Protection Regulation (GDPR) and has selected ‘Legitimate Interest’ as the most suitable lawful ground for processing of data for the purposes of Labsec’s sales and marketing.
Further information regarding the lawful basis for processing personal data can be found at ico.org.uk
Labsec collects, processes and stores data relating to businesses and decision makers. We believe that the individuals we process the data of, are likely to have an interest in the products and services that Labsec provide. Deemed as ‘Legitimate Interest’, this is based upon specific criteria including the business industry sector, size of organisation as well as the individual’s job function within the organisation. Our typical segmentation includes those within marketing, sales, business development, HR, MD and owner related job functions, although this list is not exhaustive and other variables may apply.
We will only ever collect, process and store the essential information required for making contact with the data subjects within a business environment. The personal data we collect is limited to first name, last name, email address, social profiles (limited to LinkedIn) as well as business IP address. Other business related data may also be processed including business name, job function, turnover and business address, however we will never collect further personal data such as those classed under ‘Sensitive Personal Data’.
The data collected will be used to communicate marketing and sales messages relating to Labsec’s products and services, based upon the job function held by the data subject, as well as any industry related information that we feel the recipient would find useful or helpful in their professional positions. Labsec only sends messages to those we believe are likely to be interested in our products and services based upon the organisation they are employed by and based upon their job function within that organisation. Messages from Labsec could be delivered via email, social media, via telephone or any other business to business (B2B) marketing methods that may be relevant.
When you send Labsec an enquiry or booking form via our website you will be asked to provide your contact details. We will use the data you provide to process your request and may use it to inform you by email, telephone or mail about other Labsec products and services that we feel may be of interest to you. It is deemed that as you have visited the Labsec website and provided us with your contact information that you are legitimately interested in our products and services. You have the right to object from any method of correspondence at any time, using the unsubscribe button on an email, by informing the telephone operator or by contacting us via any of the methods below.
How we collect data
At Labsec we procure data in a variety of ways, collected in line with the lawful basis of ‘Legitimate Interest’. If you have received correspondence from us, we will have procured your data in one of the following ways:
- When you have requested information from Labsec
- When we have previously met at an event and your business card or contact details were handed to us willingly
- When you or a business colleague has visited our website and we believe that there is a genuine legitimate interest in our services
- You have previously connected with a member of our team via the LinkedIn and discussed our services
- A member of our team has found your business and your contact details online, believing that your business would genuinely be interested in our products and services, based upon your job function
Legal basis for processing
We collect and process your personal data for a variety of different purposes which are set out in further detail below.
For the performance of a contract – In order to perform our contractual obligations to you, including our fulfilling orders or purchases you have made, contacting you in relation to any issues with your order or use of the Services, in relation to the provision of the Services, or where we need to provide your Personal Data to our service providers relating to the provision of the Services.
To comply with legal obligations – To comply with laws, regulators, court orders, or other legal obligations, or pursuant to legal process.
Legitimate interest – Based upon segmentation by organisation and by specific job function, coupled with our processing of personal data within the context of a business environment, we believe that any individual that receives correspondence from Labsec in a direct marketing or sales capacity, could be legitimately interested in the products and services Labsec provide. It is also deemed that direct marketing and sales is necessary in the context of promoting Labsec to professionals in business in order to increase awareness of our solutions.
How we store and retain data
The data held within Labsec’s CRM system is processed and stored in the UK within a secure environment.
Labsec are dedicated to ensuring the validity and quality of the data contained within our CRM system. We will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
At the end of that retention period, your data will either be deleted or anonymised (so that it can no longer be associated with you) for research or statistical purposes.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
How we protect your data
We have put various measures in place to protect your personal data:
- We adhere to a number of industry recognised standards, including ISO27001 which helps us maintain the highest levels of information security across our entire business.
- Our entire site is accessed using https rather than http, meaning that all information that is sent and received is encrypted for additional security. You can see this in the address bar of your browser.
Request to object
In all correspondence with you we will give you the right to object from receiving further correspondence from Labsec. On any marketing emails you receive from Labsec, there will be the option to ‘unsubscribe’ from receiving any further email correspondence. If you receive a telephone call from us, you have the right to request not to receive any further calls.
Should you wish to object to receiving communication from Labsec, you can do so in a variety of ways:
- Please click the ‘unsubscribe’ link at the bottom of every marketing email
- If you have received a call, please tell the representative that you do not wish to receive any further communication
- Please call us on 01284 333444
- Email us at email@example.com
- Write to us: Labsec, Technology House, Western Way, Bury St Edmunds, Suffolk, IP33 3SP.
All requests will be processed within 30 days. Your record will be updated to ensure that your details cannot be processed by our CRM system in the future. Please note this applies only to the processing of your personally identifiable data, not that of the business data which does not fall under the remit of GDPR.
Request for deletion
It is important to understand the difference between a right to object and a request for deletion. If you make a request for deletion, we will remove any data we hold about you from our CRM system. However, If you are removed from CRM completely, there is a risk that your data may be processed again in the future if your details are re-added to our CRM system by a member of our team who genuinely believes that your business would benefit from our products and services. If you do not wish for us to contact you again, we would recommend you request to object rather than a request for deletion, as this will ensure that your details are always suppressed from processing.
In either case we will process your request within 30 days.
Please make your request in writing by emailing: firstname.lastname@example.org
Or by writing to: Labsec, Technology House, Western Way, Bury St Edmunds, Suffolk, IP33 3SP.
Request for data held
You may request that we send you all of the data we hold that relates to you. Please make your request in writing;
By emailing: email@example.com
Or by writing to: Labsec, Technology House, Western Way, Bury St Edmunds, Suffolk, IP33 3SP.
We will process and respond to your request within 30 days, this service will be free of charge.
This policy was last reviewed and updated on the 20th February 2019. Policies are periodically reviewed to ensure compliance with the current compliance environment.
For questions relating to this policy, please contact firstname.lastname@example.org
What are Cookies?
Cookies are small text files that are placed on to your computer by websites that you visit. They are used to make websites work, to improve efficiency of websites, to improve the user’s experience and to provide usage information on websites. This information should make your website visits more productive by storing and using information on your website preferences and habits.
Your web browser can choose whether or not to accept cookies. Most web browser software is initially set up to accept them.
We may offer cookies to you and you should ensure that your web browser is set up to not accept cookies if you do not wish to receive them. Please note that if you disable cookies, some services or website functionality may not be available. For further information about cookies and how to disable them please go to aboutcookies.org.
- To help you navigate the Labsec website;
- To facilitate the and process contact and booking forms;
- To personalise your experience;
- To analyse which pages are visited most frequently;
- To provide features such as social sharing widgets and videos; and
- To measure advertising and promotional effectiveness.
These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, and to use online forms.
These are used to recognise you when you return to our website. This enables us to personalise our content for you, greet you by name and remember your preferences. These cookies also record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website, the advertising displayed on it and communications sent more relevant to your interests.
Our website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). The information generated by the cookie about your use of our website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of our website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.
If you share our content through social media, for example by liking us on Facebook, following or tweeting about us on Twitter, or giving us a ‘+1’ via Google Plus, those social networks will record that you have done so and may set a cookie for this purpose.
In some cases, where a page on our website includes content from a social network, such as a Twitter feed, or Facebook comments box, those services may set a cookie even where you do not click a button. As is the case for all cookies, we cannot access those set by social networks, just as those social networks cannot access cookies we set ourselves.
Third party sites
Our sites may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability of these policies. Please check these policies before you submit any personal data to these websites.
By continuing to use this site, you are accepting our use of these cookies that make advertising and communications more relevant to you and your interests, and further help us to improve the site.