Evergreen Power UK Privacy Policy

What This Privacy Policy Covers

This privacy policy gives you information about how “Evergreen Power UK” treats the personal information which we hold about you.

At Evergreen Power UK, we are committed to maintaining the trust and confidence of the visitors that come to our website. In this privacy policy, we have provided detailed information on when we collect your personal information, why we collect it and how we intend to use it, as well as how we keep your personal information secure.

Evergreen Power UK ensures to collect and use your data in accordance with the current data protection law and the general data protection regulation which comes into place on the 25th May 2018.

Except as set out below, we do not share, or sell, or disclose to any third party, any information collected through our website.

 

What is Personal Data?

Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (the “GDPR”) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’.

Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data, and other online identifiers.

 

Who We Are

The data controller with control of your personal information is Evergreen Power UK LTD.

“Evergreen Power UK” is a trading style of Evergreen Power UK Ltd.

Reg No. 08557372, VAT 220298039 and it has been registered in England and Wales.

Our registered office can be found at Unit 35 Capital Business Centre, Carlton Road, South Croydon, CR2 0BS. We are authorised and regulated by the Financial Conduct Authority FRN 756392 for the purposes of credit broking. We are a credit broker and not a lender and we offer facilities from a panel of lenders.

Evergreen Power UK’s data protection officer Ralitsa Johnson. She is the person appointed to lead data protection compliance for us. Contact details are in ‘How Do I Contact You’ section at the end of this Privacy Policy.

 

Information: Collection, Use and Grounds for Processing

The information Evergreen Power UK collects, and processes is summarised below:

 

The information you give to us

This includes but is not limited to information about yourself which you provide to us via our website contact forms, telephone, email, or in person.

  • Name
  • Home and/or business address as appropriate
  • Email Address
  • Phone Number

 

The bases on which we process information about you

  1. When you buy a product or service from us a contract is formed between you and us. To carry out our obligations under that contract we must process the information you give us including but not limited to your personal information. Personal information includes but it’s not limited to: names, telephone numbers (mobile and land line), personal and/or business address, email address, bank details required for processing transactions.

We shall continue to process this information until the contract between us ends or is terminated by either party under the terms of the contract.

 

How do we use your personal data?

  1. Under the GDPR, we must always have a lawful basis for using personal data. We process this information on the basis there is a contract between us, or that you have requested we use the information before we enter into a legal contract. For this purpose, we maintain a customer database.

We process your information for the following purposes:

  • to communicate with you to provide you with information you have requested regarding the products and service we offer including providing you with an estimate or a quote
  • Provide you with the services you have purchased or requested from us
  • For administration, compliance, organisation and operational and operational purposes throughout various company’s departments.
  1. When you buy a product or service from us a contract is formed between you and us. To carry out our obligations under that contract we must process the information you give us including but not limited to your personal information. Personal information includes but it’s not limited to: names, telephone numbers (mobile and land line), personal and/or business address, email address, bank details required for processing transactions.

We shall continue to process this information until the contract between us ends or is terminated by either party under the terms of the contract.

  1. We process information on the basis there is a legitimate interest, either to you or to us, of doing so.

We process your data on this basis for the purposes of:

  • record-keeping and regulatory compliance obligations for the necessary administration of our business
  • responding to unsolicited communication from you to which we believe you would expect a response
  • protecting and asserting the legal rights of any party
  • insuring against or obtaining professional advice that is required to manage business risk
  • protecting your interests where we believe we have a duty to do so
  1. We are subject to the law like everyone else so sometimes we must process information in order to comply with our legal obligations, including but not limited to where we are obliged by law to keep our customers’ details recorded.

 

Data Retention 

As required by law, we do not retain any personal data for any longer than is necessary in light of the purpose(s) for which that data is collected, held, and processed. Please refer to our Data Retention Policy. These periods may be extended if, for example, there is a legal dispute between us or where we reasonably believe a longer retention period is justified. We may also keep your information for longer if we are required by law to do so.

 

Transferring and Storing Data

We will only store or transfer your personal data in the UK. This means that it will be fully protected under the GDPR.

 

How we share your information

  • We share your information throughout various departments within our organisation in order to oblige with our contractual duties to you.
  • We will share your information with third parties when we are legally obliged to do so.
  • We do not sell or share your information to third parties for marketing purposes.
  • We will not share any of your personal data with any third parties for any purposes, subject to one important exception mentioned below.
  • We will not share any of your personal data with any third parties for any purposes, subject to some important exceptions mentioned below. We do not share your personal information with third parties unless we are legally obliged to do so, we need to comply with our contractual duties to you or protect our rights and legal position in the event of legal proceedings or complying with legal obligations, a court order, or the instructions of a government authority. Please find below a list, including but not limited to, the groups of people your information will be shared with: insurance carriers, fraud agencies, credit reference agencies, accountants, regulatory authorities, financial institutions, subcontractors. Some third parties may receive data from us that they will process in their own right.

 

Your Rights

You have the following rights under GDPR:

  • You have the right to be informed about the collection and use of your personal data
  • You have the right to be informed about the purposes for processing your personal data, the retention periods for that personal data, and who it will be shared with
  • You have the right to access a copy of the information we hold about you which is usually referred to as ‘subject access request’.
  • You have the rights to erasure, restriction or suppression of your personal data. We do not have to delete your data in certain circumstances though such as if we need your data to defend a legal claim or we are prevented by the law from deleting it
  • You have the right to have inaccurate personal data rectified, or completed if it is incomplete
  • You have the right to data portability which means you can request your data to be transmitted in structured, commonly used and machine-readable formats
  • In certain circumstances you have the right to object to the processing of your personal data
  • You have the right to object to decisions made about you based solely on automated means without any human involvement. Evergreen Power UK does not use automated decision making

You can exercise these rights by making a written request to us. You have the right to raise a complaint if you are concerned about how we process your data by contacting our data protection officer Ralitsa Johnson. Contact details are in ‘How Do I Contact You’ section at the end of this Privacy Policy. In the occasion that you are not satisfied with our response you can contact the information commissioner’s office.

 

How Can I Access My Personal Data?

If you want to know what personal data we have about you, you can ask us for details of that personal data and for a copy of it (where any such personal data is held.) This is known as a “subject access request”.

All subject access requests should be made in writing and sent to the email or postal address in ‘How Do I Contact You’ section at the end of this Privacy Policy. To make this as easy as possible for you, a subject access request form is available for you. You do not have to use this form, but it is the easiest way to let us know everything we need to know to respond to your request as quickly as possible.

There is not normally any charge for a subject access request. If your request is ‘manifestly unfounded or excessive’ (for example, if you make repetitive requests) a reasonable fee may be charged to cover our administrative costs in responding.

We will respond to your subject access request within 30 days. Normally, we aim to provide a complete response, including a copy of your personal data within that time.

In some cases, however, particularly if your request is more complex, more time may be required up to a maximum of three months from the date we receive your request. You will be kept fully informed of our progress.

 

Changes to this Privacy Notice

We updated this privacy notice on the 23/05/2018.

We may change this Privacy Notice from time to time. This may be necessary, for example, if the law changes, or if we change our business in a way that affects personal data protection.

 

How Do I Contact You?

To contact us about anything to do with your personal data and data protection, including to make a subject access request, please address it to Ralitsa Johnson, our data protection and compliance officer.

Click here for a Subject Access Request form:

Email Address: [email protected]

Telephone Number: 0800 689 1894

Postal Address: Unit 35 Capital Business Centre, Carlton Road, South Croydon, CR2 0BS.