NWIT-Long.png
×

Privacy Policy

Introduction

This is the privacy policy of North West IT Services and Solutions Limited.

North West IT’s policy is to ensure that personal information is handled securely and with respect and follow relevant regulations such as the UK Data Protection Act 2018, the EU General Data Protection Regulation (GDPR) and the UK GDPR.

Following Brexit, the UK’s data protection legislation may diverge from the EU standards. Our current approach is to continue to operate following the EU GDPR standard (together with any additional requirements in relevant jurisdictions). We will work to a higher standard to the extent of any divergence.

Without your express permission, we do not sell or rent information, whether gathered online or via our normal working relationship.

The following privacy policy will help you understand how we collect and use your personal data, for example, when you contact us, visit one of our websites, apply for a job, or purchase products and services.

Whenever you give us personal data, its collection and use will be under this privacy policy.

What personal data do we hold on you?

The information we hold on you will depend on our relationship. In most cases, such as if you’re a customer, partner, or someone we’d like to work with, this will include the following:

  • Name
  • Employer
  • Job role
  • Work address
  • Telephone number(s)
  • Email address

For visitors to our websites, we will also be recording the following:

  • IP address
  • Account usernames

How do you use my personal data?
Getting in touch and account management

Our most regular use of your personal data will be contacting you regarding our products and services and for operational tasks, such as order processing, invoicing and renewals.

If you’re not a current customer and no longer wish to hear from our team, you can request to be added to our “Do Not Contact” list by informing our staff or emailing dpo@northwest-it.co.uk. We’ll retain your name, employer, email address and telephone to ensure you are not contacted or added to our system again.

Events
If you attend an event run by North West IT, we will gather personal information as part of the registration process. This information may be used to track event attendance, relay any details before, during or after the event, gather feedback, and for future communications with you, following this policy.

Some events may have a photographer and/or videographer present, and the content they create may be shared publicly. If you do not wish to appear in any photos or videos that North West IT may use, don’t hesitate to contact marketing@northwest-it.co.uk.

Using our websites
Every time you visit our websites, such as www.northwest-it.co.uk, we store a log of your visit that shows the unique identifier of your machine and gather information about your use of the sites. Typical benefits of this information include:

Customising your user experience when interacting with our own and partner websites
Providing products/services and any associated maintenance and technical support
Providing incident and other alerts, and information about product upgrades, updates, renewals
Generating logs, statistics and reports on service usage and service performance;
Evaluating, developing and enhancing products, services, and our infrastructure;
Blocking access where there is a breach of the Terms and Conditions for using the site.

Market Research
We may use your supply data to conduct market research if you participate in any North West IT surveys. This research is conducted to support our business activities, and anonymised results may be published externally. Analysis may also improve our understanding of our user’s demographics, interests, and behaviour relevant to engagements with North West IT. If you’d like any further information, please e-mail marketing@northwest-it.co.uk.

Marketing and Promotions
We (or other selected third parties acting on our behalf) may contact you occasionally to provide information about products and services that may interest you. All marketing emails we send you will follow the guidelines described under “Phone and Email Communication from North West IT”. You have the right to ask us not to process your personal data for marketing purposes. Still, if you do so, we may need to share your contact information with third parties to ensure that you do not receive marketing communications from them on our behalf.

Job Applicants
If you provide us with your data at a career fair or similar event. We will use the data you provide to request your feedback and help us assess the event’s success. If you consent, we will retain your data (for a maximum of 24 months unless you agree to a more extended period) and use it to contact you about future employment opportunities.

If you are making a job application or enquiry, you may provide us with a copy of your CV or other relevant personal information. Please review our recruitment data policy for more details.

What’s our lawful basis for processing data?
Data protection regulations such as the GDPR require organisations to have a lawful basis for processing personal data. In most cases, North West IT will be acting as the controller of your personal data and using the principle of legitimate interest as the lawful basis of processing.

This means we have a genuine and legitimate reason to hold your data, and the risk of us doing so is not outweighed by the risk of harm to your rights and freedoms.

Where we use data, we carefully consider any potential impact on you and your rights. We also ensure we have controls in place, so if you ask us to stop processing your data for any purpose, we can respect this request.

Phone and email communications from North West IT

North West IT’s employees regularly contact existing customers and other organisations to discuss IT solutions.
If you’re not a current customer and no longer wish to hear from our team, you can request to be added to our “Do Not Contact” list by informing our staff or emailing dpo@northwest-it.co.uk. We’ll retain your name, employer, email address and telephone to ensure you are not contacted or added to our system again.

Our standards for email communications
  • Emails will identify us as the sender.
  • Emails from our email marketing platform will include an option to unsubscribe from future email messages.
  • You may unsubscribe from all mailing lists except for any emails regarding legal notices, invoicing or license renewals.
  • Any third parties who send emails on our behalf must comply with legislative requirements on unsolicited emails and the use of personal data.
  • We send emails from several domains in plain text and HTML email formats. Emails are usually sent using the sender email address: @northwest-it.co.uk or @northwest-it.uk
If you receive an email that claims to come from us but does not use these domains, or if you are suspicious that we may not approve an email, please send a copy to IT-security@northwest-it.co.uk so we can investigate.

Do you share my information with other organisations?

North West IT provide products and services from many partners with global operations. When you engage North West IT, we may pass personal data to suppliers, service providers, subcontractors, agents, distributors, vendors and other partners worldwide. This is necessary to provide you with the information, products and services you requested or otherwise for the purposes described in this privacy policy.

Suppose North West IT is acting as a Data Processor for your organisation as part of a services agreement. In that case, international data transfers will be set out in our data processing agreement. In most circumstances, this will only apply when consuming one of North West IT’s services. If you purchase a third-party product or service, North West IT will act as a commercial intermediary, not a data processor.

Suppose we receive requests from government departments, agencies or other official bodies. In that case, we will only disclose your information if and to the extent that we believe we are legally required to do so (for example, but without limitation, upon receipt of a court order, warrant, subpoena or equivalent).

Except as set out above, we will not disclose your personal data save where we need to do so to enforce our rights.

Whenever we share personal data, we take all reasonable steps to ensure that it is treated securely and following this privacy policy.

Links to other sites
This privacy policy applies to personal data collected by us. If an email or site contains links to a third-party site, please be aware that we are not responsible for the content or privacy practices. We encourage our users to be aware when they leave our site and to read the privacy policy of other sites that collect personal data. 

How long will you keep my information?

Based on your engagement with us, we will hold information for as long as required. Where we retain the information, we will always consider the points below.

  • We hold your information for as long as required to do the activities in this notice.
  • We think about what type of information it is, its sensitivity, and any legal requirements.
  • We always consider the potential risk of anyone using or sharing this information without permission.

Suppose North West IT is acting as a Data Processor for your organisation as part of a services agreement. In that case, international data transfers will be set out in our data processing agreement. In most circumstances, this will only apply when consuming one of North West IT’s services. If you purchase a third-party product or service, North West IT will act as a commercial intermediary and not a data processor.

Suppose we receive requests from government departments, agencies or other official bodies. In that case, we will only disclose your information if and to the extent that we believe we are legally required to do so (for example, but without limitation, upon receipt of a court order, warrant, subpoena or equivalent).

Except as set out above, we will not disclose your personal data save where we need to do so to enforce our rights.

Whenever we share personal data, we take all reasonable steps to ensure that it is treated securely and following this privacy policy.

What are my rights?

The right to be informed
You have a right to know what data we hold and how your data is used; this policy sets that out.

The right to update your data
We should make reasonable efforts to keep your data current and enable you to rectify any incorrect personal data we hold on you quickly.

The right to know what data we hold on you
This is called right-to-access and allows you to ask for full details of the information we hold on you.

If you’d like to request any information about your personal data or believe that we are holding incorrect personal data on you, please get in touch with dpo@northwest-it.co.uk

Obtaining a copy of the information we hold on you is possible.

The right to request your information is deleted.
This is known as the right to erasure, or “the right to be forgotten, ” meaning you can request your data be deleted.

Sometimes we can delete your information but other times, it’s just not possible, like if the law prohibits us from doing so. If you would like to request the deletion of your data, please speak with HR or contact dpo@northwest-it.co.uk to discuss it further.

The right to request your information is not used.
This is known as the right to object and is your right to tell us to stop using your personal data.

If you’re not a current customer and no longer wish to hear from our team, you can request to be added to our “Do Not Contact” list by informing our staff or emailing dpo@northwest-it.co.uk. We’ll retain your name, employer, email address and telephone to ensure you are not contacted or added to our system again.

The right to object also allows you to object to automated individual decision-making; this may impact your ability to benefit from some services. If you are concerned about using automated decision-making in North West IT, contact dpo@northwest-it.co.uk.

Requesting your information be transferred.
This is called the right to data portability. If you need us to transfer some of your information and your usual contacts are unable to assist, please contact dpo@northwest-it.co.uk

​​Data transfer to third countries

Following Brexit, data transfers to and from countries outside the UK are treated as data transfers to a third country.

To enable you to benefit from our worldwide partnerships with suppliers of IT products and services, it may be necessary to transfer your personal data outside the UK. In most cases, the transfer of information is limited to basic contact information such as name, employer, phone number and email address.

Suppose North West IT is acting as a Data Processor for your organisation as part of a services agreement. In that case, international data transfers will be set out in our data processing agreement. In most circumstances, this will only apply when consuming one of North West IT’s services. If you purchase a third-party product or service, North West IT will act as a commercial intermediary, not a data processor.

Cookies and tracking pixels

As opposed to a delightful treat, on the internet, a cookie is a piece of text entered into your computer’s memory by a website, allowing the website to store information on your machine and later retrieve it. We use cookies to ensure we give you the best experience on our website; please read our Cookie Policy.

Security

We endeavour to hold all personal data securely following our internal security procedures and applicable law.

Unfortunately, no data transmission over the Internet or any other network can be guaranteed as 100% secure. As a result, while we strive to protect your personal data, we cannot ensure and do not warrant the security of any information you transmit. This information is transmitted at your own risk.

If you have been given log-in details to provide you with access to certain parts of our Site, you are responsible for keeping those details confidential.

Who can I contact?

This is the website of North West IT Services and Solutions Limited, registered in England and Wales under company number 13396577. Its registered office is 6th & 7th Floor, 120 Bark Street, Bolton, Greater Manchester, BL1 2AX.

If you’d like to request any information about your personal data or believe we are holding incorrect personal data, don’t hesitate to contact dpo@northwest-it.co.uk. Obtaining a copy of the information we hold on you is possible.

Default title

The privacy policy was last updated in July 2021. We reserve the right to amend or vary this policy at any time and the revised policy will apply from the date posted on the site. You accept that by doing this, we have provided you with sufficient notice of the amendment or variation.