MD Communications respects your privacy and is committed to protecting your personal data. This privacy notice explains the types of data we may collect about you when you interact with us, how we store and handle that data, and how we keep it safe.
The General Data Protection Regulation (GDPR) comes into force on 25 May 2018, which is designed to give you full control over your personal data.
What personal data do we collect?
To provide our products, services and websites and for other business purposes, we collect and process personal data for our clients, potential clients, contractors and website users.
We may collect personal data from you such as your name, email address, mailing address, phone numbers, and information about your use of our websites/social media, products and services.
In certain circumstances, you will need to provide us with specific categories of personal data to enter into a contract with us and for us to perform that contract.
We do not knowingly collect personal data relating to children.
How do we collect your data?
We may collect data from you when you:
- conduct business with us
- have a direct interaction with us – you may give us your identity, contact and marketing and communications data by filling in forms or by corresponding with us by post, phone, email or otherwise.
- subscribe to our mailings/newsletter
- request marketing materials to be sent to you
- choose to fill out one of our surveys
- engage with us on social media
- use our website – we may also automatically collect technical and usage data about your equipment, browsing actions and patterns by using cookies, pixels, server logs and other similar technologies. Please see our cookies information. Please note: This website may include links to third-party websites. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and we are not responsible for their privacy statements. You can opt out of being tracked by Google Analytics by visiting Google Analytics Opt-out Browser Add-on.
For what purposes do we use your personal data?
We may use the information we collect to:
- provide you with services or products that you request
- respond to your enquiries
- analyse and improve our website or mailings
- send you newsletters and marketing communications that may interest you and/or be relevant to your business
- maintain our contact database
- carry out business purposes such as data analysis, submitting invoices and market research
What legal grounds do we rely on?
We rely on the following legal grounds to collect and process your personal information:
- Contractual obligations – we may need to collect and use your personal information if we enter into a contract with you or if we are required to via a contract that you have with us.
- Consent – where required by law, we will rely on your consent eg for direct marketing.
- Legitimate interests – we may use your personal information to improve our products and services and content. We will only use your data in a way which it might be reasonably expected to run our business and which does not materially impact your rights, freedom or interests.
What marketing will you receive from us?
You will receive marketing communications from us if you have requested information from us or if you provided us with your details when you requested to receive a white paper, guide or similar and, in each case, you consented to receive that marketing.
We don’t rent or trade email lists with other organisations and businesses.
We use a third-party provider, MailChimp, to deliver our newsletter. We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our mailings. For more information, please see MailChimp’s privacy notice. You can unsubscribe from our mailings at any time by clicking the unsubscribe link at the bottom of any of our emails or by emailing us.
Who do we share your data with and why?
We may have to share your personal data with partners, suppliers and subcontractors who help us deliver the services you’ve chosen to use.
We enter contractual arrangements with any third party with access to data we hold. We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
How do we protect your personal data?
We protect your privacy by using appropriate measures and secure technology to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.
We limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
How long do we keep your data?
We will retain your personal data for as long as necessary to fulfil the purposes for which it was collected and to comply with any applicable legal requirements.
What rights do I have?
You have rights under data protection laws in relation to your personal data. These include the right to:
- to be informed about how we use your personal data
- request access to your personal data and the right to have your data corrected or erased (which must be balanced with other rights and obligations)
- restrict processing of your personal data
More details about your legal rights can be found on the ICO’s website.
How do I contact you?
MD Communications (registered company number 07286319) is the data controller and responsible for your personal data (collectively referred to as “MD Communications”, “we”, “us” or “our” in this privacy notice).
235 High Holborn
Email address: firstname.lastname@example.org
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.
We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Changes to this privacy notice
We may change this policy from time to time by updating this page so please revisit and reread it periodically.