This policy adheres to the Data Protection Act 1998 and GDPR (EU Directive) 2018. For the purposes of this policy, Richardson Sport is the data controller.
(i) employed by Richardson Sport and acting in the course of their employment
(ii) engaged as a consultant or otherwise providing services to Richardson Sport and accessing the website in connection with the provision of such services.
Richardson Sport: 74 Dickenson Road, Rusholme, Manchester M14 5AF REG: 07280150
COLLECTION OF PERSONAL INFORMATION
Richardson Sport may collect and use the following kinds of personal information:
- Information about how you use this website
- Information that you provide to us for the purpose of registering via this website
- Any other information that you send to Richardson Sport, such as via a website form including:
o Email Address
o Telephone number
USE OF PERSONAL INFORMATION
By using this site, you consent to us processing and collecting the aforementioned data, on the terms and for the reasons which are explained below:
- Ensure that content from our site is presented in the most effective manner for you and for your computer.
- Provide you with information, products or services that you request from us where you have consented to be contacted for such purposes.
- Carry out our obligations arising from any contracts entered into between you and us.
- Allow you to participate in interactive features of our service, when you choose to do so.
- Send you our newsletters from time to time that you have positively consented to receive.
- Send you marketing communications that you have positively consented to receive.
- Internal record keeping
- We may contact by text if you have provided your mobile number.
SECURING YOUR DATA
Richardson Sport will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.
Richardson Sport will store all the personal information you provide securely and in accordance with UK data protection laws, but please be aware that any data which you send to our site is sent at your own risk.
Any payment transactions made to Richardson Sport will be encrypted using SSL technology.
Richardson Sport uses Mailchimp to store personal data which has self-certified to both the EU-U.S Privacy Shield and Swiss-U.S. Privacy Shield regimes, and lawfully transfers EU/EEA personal data to the U.S. pursuant to our Privacy Shield Certification. They also complete a SOC II Type 2 examination on an annual basis for the Trust Principal Criteria of Security, Processing Integrity, Confidentiality, and Availability. For more information on Mailchimp’s adherence to GDPR, click here.
Richardson Sport uses GoCardless to process your payments using 256-bit SSL encryption. GoCardless adheres to the Data Protection Act 1988, is authorised by the Financial Conduct Authority under the Payment Services Regulations 2009 and has received ISO 27001 certification. Data collected by GoCardless may be transferred to, and stored at, a destination outside the European Economic Area. It may also be processed by staff operating outside the EEA who work for GoCardless or their suppliers. For more on how GoCardless complies with GDPR click here.
The data we collect from you may be transferred to, processed and/ or stored on the time tracking system Timely, which is owned by Memory AS, a company based in Oslo, Norway, a member of the European Economic Area (EEA). Timely’s data is stored and processed in the US by their sub
suppliers and sub processors, Amazon and Heroku (Saleforce). Both companies are Privacy Shield- certified, so transfer of data to them is in compliance with EU law. Sub suppliers outside the EU/EEA- area are never employed. For more on how Timely is compliant with GDPR click here.
Richardson Sport uses Stripe to process your payments, which has been audited by a PCI-certified auditor and is certified to PCI Service Provided Level-1. Stripe forces HTTPS for all service using TLS (SSL). For more on Stripe’s security click here. Stripe is certified under the EU-U.S. and the Swiss-U.S. Privacy Shield Framework, for more see Stripe’s Privacy Shield Policy. For more on how Stripe is GDPR compliant click here.
Richardson Sport uses Dartfish, a video solutions provider based in Fribourg, Switzerland. The company develops online and offline video software to enable users to view, edit and analyse videos for individual and corporate use. Dartfish utilises encryption/ security software to safeguard the confidentiality of personal information they collect. Dartfish is fully compliant with both the 1995
Data Protection Directive, and GDPR. For more information on Dartfish’s compliance with GDPR click here.
In the unlikely event that our systems are breached, we will inform the ICO immediately and adhere to their guidelines.
DISCLOSURE OF YOUR INFORMATION
We will never pass on your details to third parties without receiving your positive consent to do so. We may disclose your personal information to any of our group companies (which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 736 of the UK Companies Act 1985) and also to third parties in the following circumstances:
- To any prospective seller or buyer of all (or part of) our business or assets
- If we are required to do so by law, any applicable regulation or to protect the rights, property, or safety of ourselves or others. This may include disclosing to other companies and organisations in connection with fraud protection and credit risk reduction.
ACCESS TO YOUR INFORMATION
Your data will be retained for up to 36 months, within which time Richardson Sport will seek your consent to continue to hold such information.
If you no longer wish to be contacted in relation to information, products or services that you have previously requested from us, please contact us directly by emailing email@example.com.
You have the right under the Data Protection Act to access the information which we hold about you. You have the right to have your information amended or deleted upon request. If you wish to exercise this right, please send your request to firstname.lastname@example.org.
Following GDPR guidelines Richardson Sport will answer and action all requests within 28 days of receipt.
Please note that if you click on, or follow, any links from our site to external websites, our private policy will no longer apply. Please check the privacy policies of any such external site before submitting any personal data, as we cannot accept any responsibility or liability in relation to them.
UPDATES TO THIS POLICY
This agreement will be governed by and interpreted according to the law of England and Wales. All disputes arising under the Agreement will be subject to the exclusive jurisdiction of the English and Welsh courts.
By email: email@example.com.
By phone: 07858895452