We will collect information about you when we go into a contract with you – whether you are an Employee/Sub Contractor/Customer or Supplier. The type of information we collect includes your name, postal address, job title, email address and telephone number so that we can contact you accordingly. For Sub Contractors and Employees – the information will include requiring your payment details (bank account) and tax UTR number to process payroll. For suppliers we will store your account details so we can pay you for your services or products we have ordered.
We may use the information provided by you:
We are required to keep accounting records for a longer period of time to meet our legal obligations.
We never make your personal details available to companies of JC Allfrey & Co Ltd for marketing purposes and will only disclose your personal details to third parties for Payroll/accounting purposes.
We may have to disclose your information by law or because a court or the police or other law enforcement agency has asked us for it.
In the event that a majority of our shares were bought by another company or we transferred a substantial amount of our assets to another company, we would disclose your personal information to that purchaser.
We take protection of your information seriously and have appropriate physical and technological security measures in place to keep it safe. Internally, we restrict access to personal information. Only employees who need the information in order to do their jobs have access to it. We never transfer your data outside of the UK.
JC Allfrey & Co Ltd fully supports the requirements of the Data Protection act and is committed to the protection of personal data belonging to our Employees, Sub Contractors, Customers and Suppliers. We have both an internal Data Protection Policy and external website Privacy Policies in place which reflect the requirements of DPA.
We are aware of our obligations under the General Data Protection Regulations (GDPR) and have adopted a proactive approach to the implementation of the new legislation. This includes reviewing existing and where appropriate developing and implementing new policies and procedures to ensure personal data is collected, stored and disposed of in a manner compliant with the requirements of the GDPR.