Privacy & Policy
1. The identity and the contact data of the Supplier of products and/or services and the contact data of the data protection officer
Address : 7 Caiesdykes Road, Aberdeen , Scotland
Public phone : 07946 046935
Company registration number : SC633330
Data protection officer : Przemyslaw Dunajski
1.1. Contact data of the data protection officer (“DPO”) may be found on the website dualcoat.co.uk, as long as it was (necessary to be) appointed such a data protection officer.
2. Purposes (and related legal basis) of the processing(s)
2.1. Your electronic contact details provided in the context of selling a product or a service may be used for direct marketing (unsolicited communications) regarding similar products or services. You can always withdraw your consent by using the unsubscribe link available prior to any ordering session of yours or in the footer of any marketing email communication received from us.
2.2. Without affecting the generality of the foregoing and for the sake of clarity, your (electronic contact) data may be used by the Controller and/or the suppliers of products and/or services in order to send you direct marketing communications (unsolicited communications, for products or services that are not similar to those in the context of which you provided your data), as long as you gave your consent for such purpose. You can always withdraw your consent by accessing the provided link.
3.Representation of data subjects
3.1. The data subject has the right to mandate a not-for-profit body, organisation or association which has been properly constituted in accordance with the law of a Member State, has statutory objectives which are in the public interest, and is active in the field of the protection of data subjects’ rights and freedoms with regard to the protection of their personal data to lodge the complaint on his or her behalf, to exercise the rights referred to in Articles 16, 17 and 18 and to exercise the right to receive compensation referred to in the Regulation on his or her behalf where provided for by Member State law.
3.2. Member States may provide that any body, organisation or association referred to in paragraph 19.1 of this Article, independently of a data subject’s mandate, has the right to lodge, in that Member State, a complaint with the supervisory authority which is competent pursuant to Article 16 and to exercise the rights referred to in Articles 17 and 18 if it considers that the rights of a data subject under the Regulation have been infringed as a result of the processing.
4.Right to compensation and liability
4.1. Any person who has suffered material or non-material damage as a result of an infringement of the Regulation has the right to receive compensation from the Controller or processor for the damage suffered.
4.2. Any controller involved in processing is liable for the damage caused by processing which infringes this Regulation. The processor is liable for the damage caused by processing only where it has not complied with obligations of the Regulation specifically directed to processors or where it has acted outside or contrary to lawful instructions of the Controller.
4.3. The controller or processor shall be exempt from liability under paragraph 20.2 if it proves that it is not in any way responsible for the event giving rise to the damage.
4.4. Where more than one controller or processor, or both a controller and a processor, are involved in the same processing and where they are, under paragraphs 20.2. and 20.3, responsible for any damage caused by processing, each controller or processor shall be held liable for the entire damage in order to ensure effective compensation of the data subject.
4.5. Where a controller or processor has, in accordance with paragraph 20.4., paid full compensation for the damage suffered, that controller or processor shall be entitled to claim back from the other controllers or processors involved in the same processing that part of the compensation corresponding to their part of responsibility for the damage, in accordance with the conditions set out in paragraph 18.2.
4.6. Court proceedings for exercising the right to receive compensation is brought before the courts competent under the law of the Member State referred to in 18.2.
5.Withdrawal of the consent
Where the processing is based on:
i) the consent of the data subject given for processing his/her personal data for one or more specific purposes; or
ii) the consent of the data subject given for processing certain special personal data for one or more specified purposes, except where Union or Member State law provide that the prohibition to process special personal data may not be lifted by the data subject, the data subject has the right to withdraw the consent at any time, without affecting the lawfulness of processing based on the consent before its withdrawal.
For the sake of clarity the withdrawal of the consent shall not affect the processing of the personal data based on other legal basis.
[Controller’s webs application may use “cookies”]
Cookies are text files containing small amounts of information which are downloaded to your device when you visit and use the web application. Cookies are then sent back to the originating URL on each subsequent visit, or to another URL that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device. You can find more information about cookies at: www.allaboutcookies.org and www.youronlinechoices.eu . For a video about cookies visit www.google.co.uk/ goodtoknow/data-on-the-web/cookies. Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences, and generally improve the user experience. They can also help to ensure that adverts you see online are more relevant to you and your interests.
You may set and/or adjust your (browser) settings and preferences regarding cookies at any time, and you may disable cookies. Disabling them may prevent you from using certain parts/functionalities of the Controller’s web application.
We may collect anonymous information, including for statistical or research purposes.
We use the following categories on our web based application:
Category 1 — Strictly Necessary Cookies
These cookies are essential in order to enable you to move around Controller’s web application and use its features, such as accessing secure areas. Without these cookies services like shopping baskets or e-billing cannot be provided.
Category 2 — Performance Cookies
These cookies collect information about how you use the Controller’s web application — for instance, which pages you go to most, and if they get error messages from web pages and/or the web application. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how the Controller’s website(s) and/or the application works.
Google Analytics Help pages
Category 3 — Functionality Cookies
These cookies allow the Controller’s web application to remember choices you make while browsing and/or using the application (such as your user name, language or the region you are in) and provide enhanced, more personal features.
These cookies can also be used to remember changes you have made to text size, language and other parts of web pages that you can customize.
The information these cookies collect will not personally identify you, and they cannot track your browsing activity on non- Controller’s websites.
For reliable review of your order status, on-screen on the application, in real-time, and also for easy reordering, your data may be saved on your device, serving a cookie locally.
Category 4 – Targeting cookies or advertising cookies
These cookies will usually be third-party cookies, although if a user is visiting the advertising network’s own website it is technically possible these could be first party. They will always be persistent but time-limited cookies. These cookies can be associated with services provided by the third party but this is not always the case. These cookies contain a unique key that is able to distinguish individual users’ browsing habits or that can be translated into a set of browsing habits or preferences using information stored elsewhere. Generally speaking, the privacy statement should indicate if the cookie is being used as part of an advertising network. Cookies may also be used to limit the number times a user sees a particular ad on a website and to measure the effectiveness of a particular campaign.
• Cookies placed by advertising networks to collect browsing habits in order to target relevant adverts to the user. The site the user is visiting need not actually be serving adverts, but often this will also be the case.
• Cookies placed by advertising networks in conjunction with a service implemented by the website to increase functionality, such as commenting on a blog, adding a site to the user’s social network, providing maps or counters of visitors to a site.
7.Processing of your personal data by the Provider as the processor of the suppliers of products and/or services.
The Provider may also process your personal data as the processor of the supplier of products and/or services, including without limitation for the following purposes, according to those agreed with the suppliers of products and/or services :
i) data storage for the suppliers of products and/or services.
ii) sending notifications to you regarding the information about confirmation or reject of the order or about the missed orders and about the delivery of your order.
iii) sending to you direct marketing communications; iii) collection of the IP addresses in order to be used in case of any litigation and/or fraud regarding the payments; iv) sending your data to different recipients and in different (third) countries, recipients that are processing the personal data for compatible, related and correlated purposes with the purpose of executing the contract you have with the suppliers of products and/or services, namely: delivery, printing, pos billing, loyalty, online payment processing, etc.
8.3. Any requests and/or demands sent by you towards the Controller for exercising any of your rights may be made in writing, by registered letter that will be sent to the headquarter of the Controller and/or online via the contact for or contact email of the Controller as found on the website northeastroofcleaning.com or at the email of the DPO, if such DPO exists, and/or by any other ways of communications mentioned in the legal regulations in force.
8.4. The data subject may request, according to the above mentioned ones, and obtain, free of charge, in particular, access to and rectification or erasure of personal data, restriction of the processing of personal data, data portability, and the exercise of the right to object and also the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her but also in relation with the security breach of the personal data.