This privacy notice sets out how we, Richard Rogers Conservation Limited, a company registered in England and Wales, number 05530087, uses and protects any personal information we collect or generate in relation to you whilst using this site.
In line with the requirements of the General Data Protection Regulation (EU) 2016 / 679 (“GDPR”) and UK Data Protection Act 2018 (DPA) we have reviewed and updated our policies, processes and procedures accordingly.
What we collect and the purpose of processing
We act as Data Controller for the following types of personal data we collect when you use our website:
1. Contact Data – when you use our ‘contact us’ form
b. Email address
c. Company name
2. Session cookies – which do not store Personally Identifiable information (see ‘Cookies Section’ below)
We act as Data Controller for the following types of personal data we collect when you become a client:
3. Additional Contact data
b. Email address
c. Phone number
Legal basis for processing data
When you use our ‘Contact us’ form, you are agreeing to us using your data in order to contact you for the reason specified on the form.
By using our site, without disabling session cookies (using your browser settings), you are agreeing to us using session cookies to gather information.
Performance of Contract
When you become a client, we require certain personal information about you in order to provide services to you under our contractual agreement.
What we do with the information we gather
Is used to respond to your queries, requests or questions and to deliver services to you.
This data is stored for as long as you may be a client with us and for 18 months thereafter unless we are required to keep the data for legal or regulatory purposes.
We use the information to understand which pages were accessed and how regularly in order to provide you with a better online browsing service. The cookie information we collect is aggregated and anonymised for our internal use and not passed onto any third parties. We only use that information to inform any changes to the website.
This data is used to perform contracted services to you. This data is stored for as long as you may be a client with us and for seven years thereafter for legal reasons.
When you become a supplier, you provide us with your contact and payment details for the performance of our contract together. This data is stored for as long as you may be a supplier with us and for seven years thereafter for legal reasons.
We use Google analytics in a very limited way. The session cookie data that is collected is used to collect information about how visitors use our site.
The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. This information is stored for 26 months.
Controlling your personal information
You can choose to delete and block cookies and opt out of being tracked by Google Analytics. More information on this is shown in the Cookies Section below.
Links to other websites
Our site contains links to other social media sites we use, such as Twitter, Facebook and LinkedIn. As you probably realise, once you use these links we do not have any control over that external site, so we cannot be responsible for the protection and privacy of any information you provide whilst visiting those sites.
Please do exercise caution and look at the privacy statement applicable to external sites.
Source of your data and recipients of your data
• Your Contact data is provided by you when you complete the ‘Contact Us’ form on our site.
• The cookie data comes from your use of our site.
• Client Data is provided by you when you become a client.
We do not allow adverts on our website, hence we do not allow any advertising companies to apply tracking pixels or any cookie type tracking devices.
We do not purchase data from, sell or pass your data to, any third parties, unless we are we are required to by law, or where it is necessary to administer the relationship between us.
Automated decision making
No automated decisions are made using any personal information collected using this site or any other information you provide to us.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic (including encryption) and managerial procedures to safeguard and secure any personal data you provide to us.
Data Transfers outside the EEA
All of our data resides in the EEA with the exception of cloud services used by Google LLC and Intuit Inc, both of whom are registered with the US-EU Privacy Shield.
Data Processor agreements
We use third parties to perform certain data processing activities, such as:
• Our online accounting system – Intuit Inc
• Our email platform – Google LLC
We have ensured they have committed to implementing appropriate technical and organisational measures to meet their obligations under the Data Protection regulations.
You are entitled to ask about the data that is held about you, subject to certain exceptions. This is called a Subject Access Request (SAR). These should be made by email or in writing to our Data Protection Manager at the following addresses:
Address: Unit 2, Mole Business Park, Randalls Road, Leatherhead, Surrey, KT22 7BA
In addition, the Data Protection regulation provides the following rights for individuals:
• The right to be informed
• The right of access
• The right to rectification
• The right to erasure
• The right to restrict processing
• The right to data portability
• The right to object
• Rights in relation to automated decision making and profiling
We will make every aeempt to ensure you are satisfied with our handling of your data queries or requests. However, you have the right to complain to the Information Commissioners Office (ICO) if you are not satisfied with our handling of your requests about the protection of your data. Follow the link below to report a concern to the ICO.
Further information about Cookies
These cookies allow website operators to link the actions of a user during a browser session. A browser session starts when a user opens the browser window and finishes when they close the browser window. Session cookies are created temporarily. Once you close the browser, all session cookies are deleted.
First and third-party cookies – not used by us
Whether a cookie is ‘first’ or ‘third’ party refers to the domain placing the cookie. First-party cookies are those set by a website that is being visited by the user at the time. Third-party cookies are cookies that are set by a domain other than that of the website being visited by the user. If a user visits a site and another entity sets a cookie through that website, this would be a third-party cookie.
Persistent cookies – not used by us
These cookies remain on a user’s device for the period of time specified in the cookie. They are activated each time that the user visits the website that created that particular cookie.
How to delete and block our cookies
You can choose to accept or decline cookies. Most browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. We do not expect this to affect your use of the site due to the limited type of cookies that we use.
How to opt out of Google Analytics
To opt out of being tracked by Google Analytics across all sites visit http://tools.google.com/dlpage/gaoptout.
How to opt out of sending Personal Identifiable Information to Google
To ensure you are not sending PII to Google, following this link: