GDPR Compliance

Last updated: January 2024

Our Commitment

Primo-Sheen Ltd is committed to compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take the security and privacy of personal data seriously and have implemented appropriate measures to protect the information entrusted to us.

Data Controller

Primo-Sheen Ltd acts as the data controller for personal data collected through our website and in the course of providing ecological consulting services. Our contact details are:

Primo-Sheen Ltd
Willow House, 47 Banbury Road
Kidlington, Oxfordshire OX5 2BT
Email: [email protected]

Lawful Basis for Processing

We process personal data only where we have a lawful basis to do so. The primary legal bases we rely upon are:

• Contractual necessity: Processing required to perform contracts for ecological services
• Legitimate interests: Processing for business purposes such as responding to enquiries, improving services, and maintaining records
• Legal obligation: Processing required to comply with legal requirements, including those relating to planning applications and environmental regulations
• Consent: Where we have obtained your explicit consent for specific processing activities

Data Subject Rights

Under the UK GDPR, individuals have the following rights regarding their personal data:

Right to be Informed

You have the right to know how your personal data is being collected and used. This is provided through our Privacy Policy and this GDPR statement.

Right of Access

You can request a copy of the personal data we hold about you. We will respond to such requests within one month.

Right to Rectification

If you believe any personal data we hold is inaccurate or incomplete, you can request that it be corrected.

Right to Erasure

In certain circumstances, you can request that we delete your personal data. This right is not absolute and may be subject to legal retention requirements.

Right to Restrict Processing

You can request that we limit how we use your personal data while concerns are being investigated.

Right to Data Portability

Where processing is based on consent or contract, you can request your data in a machine-readable format.

Right to Object

You have the right to object to processing based on legitimate interests or direct marketing.

Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month. There is no fee for most requests, though we may charge a reasonable fee for repetitive, manifestly unfounded, or excessive requests.

Data Security Measures

We have implemented technical and organisational measures to protect personal data, including:

• Secure storage systems with access controls
• Encryption of data in transit
• Regular security assessments
• Staff training on data protection
• Incident response procedures

Data Breach Notification

In the event of a personal data breach that poses a risk to individuals' rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to individuals, we will also notify affected data subjects directly.

International Transfers

We primarily process personal data within the United Kingdom. Where data is transferred outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements.

Data Protection Impact Assessments

We conduct Data Protection Impact Assessments where processing is likely to result in a high risk to individuals' rights and freedoms, particularly when using new technologies or processing sensitive data at scale.

Contact and Complaints

If you have questions about our GDPR compliance or wish to make a complaint about how we handle personal data, please contact us at [email protected].

You also have the right to lodge a complaint with the Information Commissioner's Office:

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk