Our Privacy Policy

Last updated 20 June 2018.

 

Lampfix (“we’ or “us” or “our”) is committed to protecting your privacy.  Please read this privacy notice (“Privacy Notice”) carefully as it describes our collection, use, disclosure, retention and protection of your personal information. This Privacy Notice applies to any website, application or service which references this Privacy Notice. Where you provide us with your personal information in any of the ways described in section 2 below, you agree that we may collect, store and use it: (a) in order to perform our contractual obligations to you; (b) based on our legitimate interests for processing (i.e. for internal administrative purposes, data analytics and benchmarking (see section 3 below for more information), direct marketing, maintaining automated back-up systems or for the detection or prevention of crime); or (c) based on your consent, which you may withdraw at any time, as described in this Privacy Notice.

 

Topics covered in our privacy policy:

1. Who we are

2. How we collect information

3. How we use your information

4. Sharing your information

5. Cookies and Traffic data

6. Accessing, updating or deleting your personal information and your rights

7. Security and storage of information

8. Transfers outside Europe

9. Other Sites

10. Children Protection

11. Changes to our privacy policy

12. Further Information

     

1. Who we are

We are partnership registered in England. Our office and premises address is Unit 6 Fen End, Stotfold, Hitchin Herts SG5 4BA.  We are registered on the Information Commissioner's Office Register of Data Controllers under registration number ZA368917.  This registration covers all of our different business partnership trading names.

For details of how to contact us, please refer to the Contact Us page.

 

2. How we collect information

We will collect information from you if you:


register to use our website; this will include your name, address, email address and telephone number. We may ask you to provide additional information about your business and preferences on a voluntary basis;

 

place an order for products or services on our website, this will include your name (including business name), address, contact details (including telephone number and email address) and your payment details;

 

complete online forms (including callback requests), take part in surveys, write posts on any message boards, post any blogs, enter any competitions or prize draws, download information such as white papers or other publications, or participate in any other interactive areas that appear on our website or which we offer to you from time to time

 

provide your contact details when registering to use or accessing any product or service we provide;


interact with us using social media;


provide your contact details verbally over the telephone to one of our personnel;


provide your contact details verbally or on paper during a face-to-face meeting with one of our personnel;

 

contact us offline for example by telephone, SMS, fax, email or post;

 

We will also collect your information where you only partially complete and/or abandon any information inputted into our website and/or other online forms and may use this information to contact you to remind you to complete any outstanding information and/or for marketing purposes.


We also collect information from your devices (including mobile devices) and applications you or your users use to access and use any of our websites, applications or services (for example, we may collect the device identification number and type, location information and connection information such as statistics on your page views, traffic to and from the sites, referral URL, ad data, your IP address, your browsing history and your web log information) and we will ask for your permission before we do so. We may do this using cookies or similar technologies (as described in section 5 below).


We may enhance personal information we collect from you with information we obtain from third parties that are entitled to share that information; for example, information from credit agencies, search information providers or public sources (e.g. for customer due diligence purposes), but in each case as permitted by applicable laws.


Providing us with information about others

If you provide us with personal information about someone else, you are responsible for ensuring that you comply with any obligation and consent obligations under applicable data protection laws in relation to such disclosure. In so far as required by applicable data protection laws, you must ensure that you have provided the required notices and have obtained the individual’s explicit consent to provide us with the information and that you explain to them how we collect, use, disclose and retain their personal information or direct them to read our Privacy Notice.

 

3. How we use your information

To the extent permissible under applicable law, we use your information to:


- provide any information and services that you have requested or any applications or services that you have ordered;

- compare information for accuracy and to verify it with third parties;

- provide, maintain, protect and improve any applications, products, services and information that you have requested from us;

- manage and administer your use of applications, products and services you have asked us to provide;

- manage our relationship with you (for example, customer services and support activities);

- monitor, measure, improve and protect our content, website, applications and services and provide an enhanced, personal, user experience for you;

- undertake internal testing of our website, applications, systems and services to test and improve their security, provision and performance, in which case, we would pseudonymise any information used for such purposes, and ensure is it only displayed at aggregated levels which will not be linked back to you or any living individual;

- provide you with any information that we are required to send you to comply with our regulatory or legal obligations;

- detect, prevent, investigate or remediate, crime, illegal or prohibited activities or to otherwise protect our legal rights (including liaison with regulators and law enforcement agencies for these purposes);

- contact you to see if you would like to take part in our customer research (for example, feedback on your use of our applications, products and services);

- monitor, carry out statistical analysis and benchmarking, provided that in such circumstances it is on an aggregated basis which will not be linked back to you or any living individual;

- deliver targeted advertising, marketing (including in-product messaging) or information to you which may be useful to you, based on your use of our applications and services;

- deliver joint content and services with third parties with whom you have a separate relationship (for example, social media providers); and

- provide you with location-based services (for example, advertising and other personalised content), where we collect geo-location data.


To the extent permitted by applicable law, we retain information about you after the closure of your Lampfix account, if your application for a Lampfix account is declined or if you decide not to proceed. This information will be held and used for as long as permitted for legal, regulatory, fraud prevention and legitimate business purposes.


We  never record or store credit card information from our customers, and always rely on trusted third-party PCI-DSS-compliant payment processors for credit card processing (currently Sagepay and Paypal), including for recurring payment processing.


Our website, applications (including mobile applications) and services may contain technology that enables us to:


- check specific information from your device or systems directly relevant to your use of the websites, applications or services against our records to make sure the websites, applications or services are being used in accordance with our end-user agreements and to troubleshoot any problems;

- obtain information relating to any technical errors or other issues with our website, applications and services;

- collect information about how you and users use the functions of the features of our website, applications and services; and

- gather statistical information about the operating system and environment from which you access our applications or services.

- You can manage your privacy settings within your browser or our applications and services (where applicable).


In addition to the purposes described in this section 3, we may also use information we gather to deliver targeted advertising, marketing or information to you which may be useful, based on your use of the website, applications or services or any other information we have about you (depending on the websites, applications or services, you may able to configure these features to suit your preferences). Sections 6 of this Privacy Notice provides further details on how we will do this.


We may monitor and record our communications with you, including e-mails and phone conversations. Information which we collect may then be used for training purposes, quality assurance, to record details about our website, applications and services you order from us or ask us about, and in order to meet our legal and regulatory obligations generally.


Data analytics and benchmarking

We may use information generated and stored during your use of our services for our legitimate business interests to enable us to give you the best service and/or solutions and the best experience. These purposes include to:


- deliver advertising, marketing (including in-product messaging) or information to you which may be useful to you, based on your use of services;

- carry out research and development to improve our services, products and applications;

- develop and provide new and existing functionality and services (including statistical analysis, benchmarking and forecasting services); and

- provide you with location based services (for example location relevant content) where we collect geo-location data to provide a relevant experience.


Whenever we use your information for our legitimate interests, we will ensure that your information is processed on a pseudonymised basis and displayed at aggregated levels, which will not be linked back to you or to any living individual.


You have the right to object to processing based on our legitimate interests, and if you wish to do so, please contact us at [email protected] to discuss this further.

 

4. Sharing your information

We use several third-party service providers (Subprocessors) to process Personal Data. We commit to only using Subprocessors in compliance with Data Protection Legislation. This use will be covered by a contract between Lampfix and the Subprocessor that provides guarantees to that effect.


We may share your information with:

our suppliers, business partners and group companies from time to time so they can provide you with any information, products or services that you have requested. We may also share your information with our business partners for marketing purposes as described in paragraph 2 below.

third parties which supply services to us or which process information on our behalf (for example, payment providers, software providers and website hosts where relevant). These third parties may have incidental access to your information, but we will ensure that they keep your information secure and do not use it for their own purposes.

another organisation if we sell or buy (or negotiate to sell or buy) any business or assets.

another organisation to whom we transfer our agreement with you.

with our funders or potential funders, such as our bank and with our professional advisers who have a reasonable need to see it.


We may pass collective information about the use of our website or our products or services to third parties but this will not include information that can be used to identify you.


We will disclose your information if we are required to by law. We may disclose your information to enforcement authorities if they ask us to, or to a third party in the context of actual or threatened legal proceedings, provided we can do so without breaching data protection laws.


Except as explicitly mentioned above, we do not sell, trade, or otherwise transfer your personal data to third parties.


For further information on our sub-processors please refer to our list of Third-Party Data Processors.


5. Cookies and Traffic Data

Cookies are small text files which are transferred from our website, product or service and stored on your computer's hard drive.  They are widely used in order to help websites work, or work more efficiently, as well as to provide general usage information to the owners of the site.  We're currently looking into making further improvements to our privacy policy and how cookies are managed on our website, so please check back here for updates.

 

There are different types of cookies

Session Cookies  - We use session cookies on our websites and in some of our products or services to identify and track users and to remember what is in your shopping basket (where relevant) and we also use session cookies in the VSP Admin reporting system to remember customer information used to complete transactions through the VSP Terminal.  Our session cookies may contain your customer account number, company name and email address.  These session cookies are deleted when you close your browser or leave your session in the product or service.

 

Persistent Cookies - Persistent cookies enable our website, product or service to “remember who you are” and to remember your preferences on our website. Persistent cookies will stay on your computer or device after you close your browser or leave your session in the product or service.

 

Web analytics and similar services - Our website uses web analytics services. Web analytics cookies allow us to recognise and count the number of visitors and see how they move around the website, product or service. This helps us make our service to you better.

 

We also use cookies and similar software known as web beacons or pixels to count users who have visited our website after clicking through from one of our advertisements on another website or in emails and to collect details of any products purchased.  These web beacons collect limited information which does not identify particular individuals.  It is not possible to refuse the use of web beacons.  However, because they are used in conjunction with cookies, you can effectively disable them by setting your browser to restrict or block cookies.

 

We keep a record of traffic data which is logged automatically by our server, such as your Internet Protocol (IP) address, the website that you visited before ours, the website you visit after leaving our site. We also collect some site, product and service statistics such as access rates, page hits and page views. We are not able to identify any individual from traffic data or site statistics.

 

How to disable cookies

Most web browsers allow some control to restrict or block cookies if you wish, however if you disable cookies you may find this affects your ability to use certain parts of our website, products or services. 

Each browser is a little different, so look at your browser's Help menu to learn the correct way to modify your cookies, or look at the links below.

 

For more information about cookies and instructions on how to adjust your browser settings, see the Internet Advertising Bureau website www.youronlinechoices.co.uk.

 

6. Accessing, updating or deleting your personal information and your rights

You have the right to access and update personal data you have previously provided to us. You can do so at any time by connecting to your personal account on lampfix.co.uk.

If you are based within the EEA or within another jurisdiction having similar data protection laws, in certain circumstances you have the following rights:


the right to be told how we use your information and obtain access to your information;

the right to have your information rectified or erased or place restrictions on processing your information;

the right to object to the processing of your information e.g. for direct marketing purposes or where the processing is based on our legitimate interests;

the right to have any information you provided to us on an automated basis returned to you in a structured, commonly used and machine-readable format, or sent directly to another company, where technically feasible (“data portability”);

where the processing of your information is based on your consent, the right to withdraw that consent subject to legal or contractual restrictions;

the right to object to any decisions based on the automated processing of your personal data, including profiling; and

the right to lodge a complaint with the supervisory authority responsible for data protection matters (e.g. in the UK, the Information Commissioner’s Office).


If you request a copy of your information you may be required to pay a statutory fee.


If we hold any information about you which is incorrect or if there are any changes to your details, please let us know by so that we can keep our records accurate and up to date. Alternatively you can make the changes yourself at any time by connecting to your personal account on lampfix.co.uk.

We will retain your personal information for the duration of our business relationship and afterwards for as long as is necessary and relevant for our legitimate business purposes, in accordance with this Policy or as otherwise permitted by applicable laws and regulations. Where we no longer need your personal information, we will dispose of it in a secure manner (without further notice to you).

Safety Retention Period: we retain a copy of your data in our backups for safety reasons, even after they are destroyed from our live systems. See Section 8 'Security and storage of Information' for more details.

 

7. Security and storage of information

We realize how important and sensitive your personal data is, and we take a great number of measures to ensure that this information is securely processed, stored and preserved from data loss and unauthorized access. Our technical, administrative and organizational security measures are described in details in our Security Policy.

 

We will keep your information secure by taking appropriate technical and organisational measures against its unauthorised or unlawful processing and against its accidental loss, destruction or damage.

 

Some communications sent over the internet, such as email, may not be secured unless they are encrypted.  Although we do our best to monitor and improve how we protect your personal data, we cannot guarantee the security of your data which is transmitted to our website or other products and services via an internet or similar connection and any transmission of data to our site is at your own risk. 

 

If we have given you (or you have chosen) a password to access certain areas of our website, product or service please keep this password safe - we will not share this password with anyone.

 

Data Retention

Account & Contact Data: we will only retain such data as long as necessary for the purpose for which it was collected, as laid out in this policy, including any legal retention period, or as long as necessary to carry out a legitimate and reasonable promotion of our products and services.

 

Browser Data: we will only retain this data for a short period of time, generally 6 months, unless we need to archive it in relation with a legitimate concern related to the security or performance of our services, or as required by law.

Safety Retention Period:

As part of our Security Policy, we always try to preserve your data from accidental or malicious deletion. As a result, after we delete any of your personal information (Account & Contact Data) from our database upon request from you, or after you delete any personal information from your online account, it may not be immediately deleted from our backup systems. It could remain stored for up to 6 months, until it is ultimately destroyed.

We commit not to use those backup copies of your deleted data for any purpose except for maintaining the integrity of our backups, except if you or the law require us to do so.

 

8. Transfers outside Europe

Personal data in the European Union is protected by data protection laws but other countries do not necessarily protect your personal data in the same way.  Our website and some of our products or services or parts of them may be hosted in the United States and this means that we may transfer any information which is submitted by you through the website, product or service outside the European Economic Area (which means all the EU countries plus Norway, Iceland and Liechtenstein) ("EEA") to the United States. When you send an email to us, this may be stored on email servers which are hosted in the United States, if we do this, we will take steps to ensure that our hosting provider uses the necessary level of protection for your information but if you do not want your information to be transferred outside the EEA you should not use our website, product or service or contact us via email.

 

9. Other Sites

If you follow a link from our website, product or service to another site or service, this policy will no longer apply. We are not responsible for the information handling practices of third party sites or services and we encourage you to read the privacy policies appearing on those sites or services.


10. Children Protection

Our website, services and contents are not directed to children, and we do not knowingly collect or process children-related data. If we learn that we have collected or received such data without parental consent, we will delete it immediately.

 

11. Changes to our privacy policy

We may update this Privacy Policy from time to time, in order to clarify it, or to comply with legal obligations. The "Last Updated" mention at the top of the policy indicates the last revision, which is also the effective date of those changes. If you continue to use our services after such a change, you agree to our updated policy. We will always update the privacy policy on our website, so please try to read it when you visit the website.

 

12. Further Information

If you would like further information about data protection, or if you would like to view the register of Data Controllers, you can visit the Information Commissioner's site at www.ico.gov.uk.


If you have are any question regarding this Privacy Policy, or any enquiry about your personal data, please reach out to our contact us page on this website or contact us at:

 

            Data Protection Officer

            Lampfix

Unit 6 Fen End

Stotfold, Hitchin

Hertfordshire

SG5 4BA

 

Thank you for visiting our website.