Privacy Policy

This is the privacy policy of North West IT Services and Solutions Limited.

North West IT’s policy is to ensure that personal information is handled securely and with respect and follow relevant regulations such as the UK Data Protection Act 2018, the EU General Data Protection Regulation (GDPR) and the UK GDPR.

Following Brexit, the UK’s data protection legislation may diverge from the EU standards. Our current approach is to continue to operate following the EU GDPR standard (together with any additional requirements in relevant jurisdictions). We will work to a higher standard to the extent of any divergence.

Without your express permission, we do not sell or rent information, whether gathered online or via our normal working relationship.

The following privacy policy will help you understand how we collect and use your personal data, for example, when you contact us, visit one of our websites, apply for a job, or purchase products and services.

Whenever you give us personal data, its collection and use will be under this privacy policy.

The information we hold on you will depend on our relationship. In most cases, such as if you’re a customer, partner, or someone we’d like to work with, this will include the following:

For visitors to our websites, we will also be recording the following:

Our most regular use of your personal data will be contacting you regarding our products and services and for operational tasks, such as order processing, invoicing and renewals.

If you’re not a current customer and no longer wish to hear from our team, you can request to be added to our “Do Not Contact” list by informing our staff or emailing dpo@northwest-it.co.uk. We’ll retain your name, employer, email address and telephone to ensure you are not contacted or added to our system again.

Events

If you attend an event run by North West IT, we will gather personal information as part of the registration process. This information may be used to track event attendance, relay any details before, during or after the event, gather feedback, and for future communications with you, following this policy.

Some events may have a photographer and/or videographer present, and the content they create may be shared publicly. If you do not wish to appear in any photos or videos that North West IT may use, don’t hesitate to contact marketing@northwest-it.co.uk.

Every time you visit our websites, such as www.northwest-it.co.uk, we store a log of your visit that shows the unique identifier of your machine and gather information about your use of the sites. Typical benefits of this information include:

Customising your user experience when interacting with our own and partner websites

Providing products/services and any associated maintenance and technical support

Providing incident and other alerts, and information about product upgrades, updates, renewals

Generating logs, statistics and reports on service usage and service performance;

Evaluating, developing and enhancing products, services, and our infrastructure;

Blocking access where there is a breach of the Terms and Conditions for using the site.

Market Research

We may use your supply data to conduct market research if you participate in any North West IT surveys. This research is conducted to support our business activities, and anonymised results may be published externally. Analysis may also improve our understanding of our user’s demographics, interests, and behaviour relevant to engagements with North West IT. If you’d like any further information, please e-mail marketing@northwest-it.co.uk.

Marketing and Promotions

We (or other selected third parties acting on our behalf) may contact you occasionally to provide information about products and services that may interest you. All marketing emails we send you will follow the guidelines described under “Phone and Email Communication from North West IT”. You have the right to ask us not to process your personal data for marketing purposes. Still, if you do so, we may need to share your contact information with third parties to ensure that you do not receive marketing communications from them on our behalf.

Job Applicants

If you provide us with your data at a career fair or similar event. We will use the data you provide to request your feedback and help us assess the event’s success. If you consent, we will retain your data (for a maximum of 24 months unless you agree to a more extended period) and use it to contact you about future employment opportunities.

If you are making a job application or enquiry, you may provide us with a copy of your CV or other relevant personal information. Please review our recruitment data policy for more details.

What’s our lawful basis for processing data?

Data protection regulations such as the GDPR require organisations to have a lawful basis for processing personal data. In most cases, North West IT will be acting as the controller of your personal data and using the principle of legitimate interest as the lawful basis of processing.

This means we have a genuine and legitimate reason to hold your data, and the risk of us doing so is not outweighed by the risk of harm to your rights and freedoms.

Where we use data, we carefully consider any potential impact on you and your rights. We also ensure we have controls in place, so if you ask us to stop processing your data for any purpose, we can respect this request.

North West IT’s employees regularly contact existing customers and other organisations to discuss IT solutions.

If you’re not a current customer and no longer wish to hear from our team, you can request to be added to our “Do Not Contact” list by informing our staff or emailing dpo@northwest-it.co.uk. We’ll retain your name, employer, email address and telephone to ensure you are not contacted or added to our system again.

Our standards for email communications

If you receive an email that claims to come from us but does not use these domains, or if you are suspicious that we may not approve an email, please send a copy to IT-security@northwest-it.co.uk so we can investigate.

North West IT provide products and services from many partners with global operations. When you engage North West IT, we may pass personal data to suppliers, service providers, subcontractors, agents, distributors, vendors and other partners worldwide. This is necessary to provide you with the information, products and services you requested or otherwise for the purposes described in this privacy policy.

Suppose North West IT is acting as a Data Processor for your organisation as part of a services agreement. In that case, international data transfers will be set out in our data processing agreement. In most circumstances, this will only apply when consuming one of North West IT’s services. If you purchase a third-party product or service, North West IT will act as a commercial intermediary, not a data processor.

Suppose we receive requests from government departments, agencies or other official bodies. In that case, we will only disclose your information if and to the extent that we believe we are legally required to do so (for example, but without limitation, upon receipt of a court order, warrant, subpoena or equivalent).

Except as set out above, we will not disclose your personal data save where we need to do so to enforce our rights.

Whenever we share personal data, we take all reasonable steps to ensure that it is treated securely and following this privacy policy.

Links to other sites

This privacy policy applies to personal data collected by us. If an email or site contains links to a third-party site, please be aware that we are not responsible for the content or privacy practices. We encourage our users to be aware when they leave our site and to read the privacy policy of other sites that collect personal data. 

Based on your engagement with us, we will hold information for as long as required. Where we retain the information, we will always consider the points below.

Suppose North West IT is acting as a Data Processor for your organisation as part of a services agreement. In that case, international data transfers will be set out in our data processing agreement. In most circumstances, this will only apply when consuming one of North West IT’s services. If you purchase a third-party product or service, North West IT will act as a commercial intermediary and not a data processor.

Suppose we receive requests from government departments, agencies or other official bodies. In that case, we will only disclose your information if and to the extent that we believe we are legally required to do so (for example, but without limitation, upon receipt of a court order, warrant, subpoena or equivalent).

Except as set out above, we will not disclose your personal data save where we need to do so to enforce our rights.

Whenever we share personal data, we take all reasonable steps to ensure that it is treated securely and following this privacy policy.

You have a right to know what data we hold and how your data is used; this policy sets that out.

We should make reasonable efforts to keep your data current and enable you to rectify any incorrect personal data we hold on you quickly.

This is called right-to-access and allows you to ask for full details of the information we hold on you.

If you’d like to request any information about your personal data or believe that we are holding incorrect personal data on you, please get in touch with dpo@northwest-it.co.uk

Obtaining a copy of the information we hold on you is possible.

This is known as the right to erasure, or “the right to be forgotten, ” meaning you can request your data be deleted.

Sometimes we can delete your information but other times, it’s just not possible, like if the law prohibits us from doing so. If you would like to request the deletion of your data, please speak with HR or contact dpo@northwest-it.co.uk to discuss it further.

The right to request your information is not used.

This is known as the right to object and is your right to tell us to stop using your personal data.

If you’re not a current customer and no longer wish to hear from our team, you can request to be added to our “Do Not Contact” list by informing our staff or emailing dpo@northwest-it.co.uk. We’ll retain your name, employer, email address and telephone to ensure you are not contacted or added to our system again.

The right to object also allows you to object to automated individual decision-making; this may impact your ability to benefit from some services. If you are concerned about using automated decision-making in North West IT, contact dpo@northwest-it.co.uk.

This is called the right to data portability. If you need us to transfer some of your information and your usual contacts are unable to assist, please contact dpo@northwest-it.co.uk

Following Brexit, data transfers to and from countries outside the UK are treated as data transfers to a third country.

To enable you to benefit from our worldwide partnerships with suppliers of IT products and services, it may be necessary to transfer your personal data outside the UK. In most cases, the transfer of information is limited to basic contact information such as name, employer, phone number and email address.

Suppose North West IT is acting as a Data Processor for your organisation as part of a services agreement. In that case, international data transfers will be set out in our data processing agreement. In most circumstances, this will only apply when consuming one of North West IT’s services. If you purchase a third-party product or service, North West IT will act as a commercial intermediary, not a data processor.

We endeavour to hold all personal data securely following our internal security procedures and applicable law.

Unfortunately, no data transmission over the Internet or any other network can be guaranteed as 100% secure. As a result, while we strive to protect your personal data, we cannot ensure and do not warrant the security of any information you transmit. This information is transmitted at your own risk.

If you have been given log-in details to provide you with access to certain parts of our Site, you are responsible for keeping those details confidential.

This is the website of North West IT Services and Solutions Limited, registered in England and Wales under company number 13396577. Its registered office is North West IT Services and Solutions Limited, Egerton Business Centre, The Old Mill House, Deakins Business Park, Egerton, Bolton, BL7 9RP.

If you’d like to request any information about your personal data or believe we are holding incorrect personal data, don’t hesitate to contact dpo@northwest-it.co.uk. Obtaining a copy of the information we hold on you is possible.