What is the purpose of this privacy notice?
This privacy notice aims to give you information on how we collect and process your personal data and for what purpose. You must read this privacy notice together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements the other notices and is not intended to override them. Enact Solutions will only hold and process your personal data on one or more of the grounds authorised by the GDPR. In this Policy we advise you to view GDPR guides of the basis on which we use your personal data, store, protect and update it for the process of keeping you informed of our services and products.
1. Enact Solutions Ltd
Enact Solutions is a drama-based consultancy for training, motivating and informing people in the workplace and also in education.
Our raison d’être is to inspire people to make a positive difference to their lives. Everything we do, we believe in changing the default settings, in thinking differently, and making it count. We do this by designing and delivering highly engaging, immersive learning experiences that blend drama, brain science and technology to bring subjects to life and evoke feelings which open people to new ways of thinking and behaving.
Enact Solutions aim is to be transparent with how they use your data Under the General Data Protection Regulation (GDPR),
2. Information we collect
Your full Name, Occupation, Organisation, Email and Telephone contact details, will be stored in a protected environment such as CRM and will not be shared with third parties.
3. How we collect data
By completing a register to opt in or provided your personal information when registering on training, conference, showcase & other relationship networking with Enact Solutions and in all cases, you have not opted out of receiving Enact Solutions products and services.
4. How we use your data
We use your personal data to inform you about Enact Solutions. You will receive marketing communications from us if you have requested information on our products & services. We will only send you information if you have expressed permission and we do not share user data with third parties. By providing your personal data, you agree to the storing and processing of your data.
We use Google Analytics cookies to gather this information to assist in improving the website experience for you. They are used for statistical purposes to track how many users we have and how often they visit our websites.
We collect information listing which of our pages are most frequently visited, and by which types of users and from which countries.
We may gather information about your general internet use from use of the cookie.
Where used, these analytics cookies are downloaded to your computer and stored on the computer’s hard drive. This information will not identify you personally.
5. Third party
This means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data. Enact Solutions has no purpose to process and share your data with a third party.
6. Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to employees of Enact Solutions, who may access your data on a business need to know basis. They will only process your personal data on our instructions/ data controller and they are subject to a duty of confidentiality.
7. Holding your data
Your data will only be kept for the length of time necessary and for the purpose of which it was collected for initially so as Enact Solutions can send their services and products.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. We have a retention period of 12 months and will manage this retention by contacting you within this period. (see Section 9, Your Duty & Responsibility)
By law we have to keep basic information about our customers (including contact, identity, data) for six years after they cease being customers for tax purposes.
You may request to view, review, correct, delete or otherwise modify any personal information that you have previously provided to us at any time.
No fee required – with some exceptions You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may be charge a reasonable administration fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
What we may need from you – We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
Time limit to respond – We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
All correspondences from Enact Solution will contain a link for you to unsubscribe/ subscribe easily in an automated way, this allows you to unsubscribe totally from our data, or subsequently you can subscribe via our website www.enactsolutions.com
8. Your rights and your personal data
Unless subject to an exemption under the GDPR, you have the following rights with respect to your personal data:
- The right to request a copy of the personal data which we hold about you;
- The right to request that we correct any personal data if it is found to be inaccurate or out of date;
- The right to request your personal data is erased where it is no longer necessary to retain such data; The right to withdraw your consent to the processing at any time, WHERE CONSENT WAS YOUR LAWFUL BASIS FOR PROCESSING THE DATA
- The right to request that we provide you with your personal data and where possible, to transmit that data directly to another data controller, (known as the right to data portability), (where applicable i.e. where the processing is based on consent or is necessary for the performance of a contract with the data subject and where the data controller processes the data by automated means);
- The right, where there is a dispute in relation to the accuracy or processing of your personal data, to request a restriction is placed on further processing;
- The right to object to the processing of personal data, (where applicable i.e. where processing is based on legitimate interests (or the performance of a task in the public interest/exercise of official authority); direct marketing and processing for the purposes of scientific/historical research and statistics).
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Personal data – The GDPR applies to ‘personal data’ meaning any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier (as explained in Article 6 of GDPR). For example name, organisation, work email address. Online identifiers include IP addresses and cookies.
Processing – Means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Further processing – If we wish to use your personal data for a new purpose, not covered by this Data Privacy Notice, then we will provide you with a new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions.
This version was last updated on 4th may 2018.
From 25 may 2018 there will be changes in data protection laws and we will then be able to respond to some of your requests (for example, a request for the transfer of your personal data). We are still working towards getting our systems ready for some of these changes.
Your Duty & Responsibility – Please keep us informed if your personal data changes during your relationship with us. It is important that the personal data we hold about you is accurate and current.
10. How to make a complaint
To exercise all relevant rights, queries or complaints please in the first instance contact our Data Protection Officer/ Controller;
Mr Graham Coleman
Email: firstname.lastname@example.org Tel: 01484 310234
Address: Unit 2a Thongsbridge Mills, Miry Lane, Thongsbridge, Huddersfield, West Yorkshire HD9 7RW
If Mr Coleman does not resolve your complaint to your satisfaction, you have the right to lodge a complaint with the Information Commissioners Office on 03031231113 or via email or at the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, England.