020 3137 3719 sales@net-essence.com

Who we are

Our website address is: https://www.net-essence.com.

Net Essence Ltd – Privacy Notice

This Privacy Notice provides details of the personal data we collect from you, what we do with it, how you might access it and who it might be shared with.

Our Contact Information (Data Controller)
Net Essence Ltd
Legacy Centre
Hampton Road West
Feltham
TW13 6DH
United Kingdom
Telephone: +442031373719
Company Email: legal@net-essence.com

What we do with your personal data

We process personal data only for the purpose for which they are collected. The purpose is dependent on whether you use only our website, or additionally, our services. If you use our services you are required to register and we collect your personal data. We use this personal data for the provision of the service or the performance of the contract. We may use your personal data for other similar purposes, including marketing and communications, but that will only occur in the case we have your consent or another legal justification for doing so.
From our we process and retain personal data for the following purposes and periods, with Customers and Clients the applicable legal basis.

Processing purpose   –   Legal basis   –   Retention period

Customer support – 6(1)(b) – we have a contract with the data subject – Until contract completed

Organisation’s administration and management – 6(1)(b) – we have a contract with the data subject – Until contract completed

Debt management – 6(1)(f) – it’s in our legitimate interest (Business operations and due Diligence) – Until account settled

Legal and regulatory compliance – 6(1)(c) – we have to comply with a legal obligation – Until tax or other retention period expires

Gather feedback to improve our services – 6(1)(b) – we have a contract with the data subject – Until service completed

Communications – 6(1)(a) – we have the data subject’s consent – Until consent withdrawn

Marketing – 6(1)(f) – it’s in our legitimate interest (Business operations and due Diligence) – Until service completed

Inviting you to presentations, events, surveys and any other marketing campaigns as well as organising meetings between you and our representatives – 6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) – Until you opt out

Administrative enquiries – 6(1)(e) – official authority is vested in us, the controller – Until service completed

Training and Development – 6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) – Until consent withdrawn

To provide you with information and services that you request from us –  6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) – Until consent withdrawn

To send you periodic updates about our business, activities, services and Content that may be of interest to you and surveys about market-related matters – 6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) – Until consent withdrawn

From our Suppliers we process and retain personal data for the following purposes and periods, with the applicable legal basis.

Processing Purpose   –   Legal basis   –   Retention period

Budget management – 6(1)(f) – it’s in our legitimate interest (Business operations and due Diligence) – Until no longer required

Supplier Management – 6(1)(f) – it’s in our legitimate interest (Business operations and due Diligence) – Until service completed

Organisation’s administration and management 6(1)(b) – we have a contract with the data subject – Until service
completed

From our Website Visitors we process and retain personal data for the following purposes and periods, with the  applicable legal basis.

Processing purpose   –   Legal basis   –   Retention period

Site management and security 6(1)(f) – it’s in our legitimate interest (Information, system, network and cyber security) – 1 year

Gather feedback to improve our services – 6(1)(f) – it’s in our legitimate interest (Business operations and
due Diligence) – 1 year

Send e-mail alerts – 6(1)(a) – we have the data subject’s consent – Until consent withdrawn

From our Prospective Employees we process and retain personal data for the following purposes and periods, with the applicable legal basis.

Processing purpose   –   Legal basis   –   Retention period

Employee Recruitment and Employment – 6(1)(b) – steps are required prior to a contract with the data
subject – 1 year

From our Prospective customers/clients we process and retain personal data for the following purposes and 
periods, with the applicable legal basis.

Processing purpose   –   Legal basis   –   Retention period

Maintaining a record of contacts 6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) of receiving such communications – Until you opt out of receiving such communications

Inviting you to presentations, events, surveys and any other marketing campaigns as well as organising meetings between you and our representatives – 6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) – Until you opt out of receiving such communications

To send you periodic updates about our business, activities, services and Content that may be of interest to you and surveys about market-related matters – 6(1)(f) – it’s in our legitimate interest (Communications, marketing and intelligence) – Until you opt out of receiving such communications

To provide you with information and services that you request from us – 6(1)(f) – it’s in our legitimate interest (Business operations and due Diligence) – 2 years

Marketing 6(1)(a) – we have the data subject’s consent – 1 year

 

What personal data do we collect?

The personal data we collect depends on whether you just visit our website or use our services. If you visit our
website, you do not need to provide us with any personal data. However, your browser transmits some data
automatically, such as the date and time of retrieval of one of our web pages, your browser type and settings, your operating system, the last web page you visited, the data transmitted and the access status, and your IP address.

If you use our services, personal data is required to fulfill the requirements of a contractual or service relationship, which may exist between you and our organisation.

We collect:

1. Online Identifiers
2. Employment History
3. Education History
4. Job Title
5. Work address
6. Financial Details
7. Banking Details
8. Location Information
9. Name
10. Telephone contact details
11. Confidential Correspondence
12. Credit History
13. Email, Social Networks

We collect your personal data from the following indirect sources: 

Data subject type   –   Personal data type   –   Indirect source name

Prospective customers/clients  – Job Title – Experian’s TargetIQ

Prospective customers/clients – Work address – Experian’s TargetIQ

Prospective Employees – Employment History – Recruitment Agency

Prospective Employees – Location Information – Recruitment Agency

Prospective customers/clients – Name – Experian’s TargetIQ

Prospective Employees – Name – Recruitment Agency

Prospective customers/clients – Telephone contact details – Experian’s TargetIQ

Prospective Employees – Telephone contact details – Recruitment Agency

Customers and Clients – Telephone contact details – Various Data Brokers

Customers and Clients – Credit History – Creditsafe

Prospective Employees – Education History – Recruitment Agency

Prospective customers/clients Email, Social Networks Experian’s TargetIQ

Prospective Employees – Email, Social Networks – Recruitment Agency

Who might we share your personal data with?

To maintain and improve our services, your personal data may need to be shared with or disclosed to service
providers, other Controllers or, in some cases, public authorities. We may be mandated to disclose your personal data in response to requests from a court, police services or other regulatory bodies. Where feasible, we will consult with you prior to making such disclosure and, in order to protect your privacy, we will ensure that we will disclose only the minimum amount of your information necessary for the required purpose.

We transfer personal data to the following organisations and countries:

Data subject type   –   Organisation name   –   Type   –   Country

Website Visitors – Mailchimp Inc – Processor – United States

Website Visitors – Microsoft Office 365 – Processor – United Kingdom

Website Visitors – Solid Dev Ltd. – Processor – United Kingdom

Prospective Employees – Microsoft Office 365 – Processor – United Kingdom

Prospective Employees – Solid Dev Ltd. – Processor – United Kingdom

Prospective customers/clients – Dynamics 365 – Processor – United Kingdom

Prospective customers/clients – Mailchimp Inc – Processor – United States

Prospective customers/clients – Microsoft Office 365 – Processor – United Kingdom

Prospective customers/clients – Solid Dev Ltd. – Processor – United Kingdom

Prospective customers/clients – Zoom Video Communications, Inc. (“Zoom”) – Processor – United States

Suppliers – Microsoft Office 365 – Processor – United Kingdom

Suppliers – Xero – Processor – United Kingdom

Customers and Clients – ConnectWise Inc. – Processor – United States

Customers and Clients – Continuum LLP – Processor – United States

Customers and Clients – Dynamics 365 – Processor – United Kingdom

Customers and Clients – Mailchimp Inc – Processor – United States

Customers and Clients – Microsoft Office 365 – Processor – United Kingdom

Customers and Clients – Solid Dev Ltd. – Processor – United Kingdom

Customers and Clients – Xero – Processor – United Kingdom

Customers and Clients – Zoom Video Communications, Inc. (“Zoom”) – Processor – United States

When a Processor or Controller is in a country outside the EU, we apply the necessary safeguards which may include, confirming whether the EC approves of transfers to the country, whether we need to use the EC’s model contracts or, if the transfer is internal to our organisation, commitment to Binding Corporate Rules. Details of these safeguards may be obtained by contacting us directly.

How do we look after personal data?

We limit the amount of personal data collected only to what is fit for the purpose, as described above. We restrict, secure and control all of our information assets against unauthorised access, damage, loss or destruction; whether physical or electronic. We retain personal data only for as long as is described above, to respond to your requests, or longer if required by law. If we retain your personal data for historical or statistical purposes we ensure that the personal data cannot be used further. While in our possession, together with your assistance, we try to maintain the accuracy of your personal data.

How can you access your personal data?

You have the right to request access to any of your personal data we may hold. If any of that information is incorrect, you may request that we correct it. If we are improperly using your information, you may request that we stop using it or even delete it completely.

If you would like to make a request to see what personal data of yours we might hold, you may make a request from our company website or contact us directly

Where you have previously given your consent to process your personal data, you also have the right to request that we port or transfer your personal data to a different service provider or to yourself, if you so wish.

Where it may have been necessary to get your consent to use your personal data, at any moment, you have the right to withdraw that consent. If you withdraw your consent, we will cease using your personal data without affecting the lawfulness of processing based on consent before your withdrawal.

Our Supervisory Authority

You have the right to lodge a complaint with any Supervisory Authority. See our Supervisory Authority contact details below.

The Information Commissioner’s Office 
Water Lane, Wycliffe House 
Wilmslow – Cheshire SK9 5AF 
United Kingdom
international.team@ico.org.uk
+44 1625 545 745 
www.ico.org.uk