Privacy Policy (December 2023)

Thanks for taking the time to read our Privacy Policy.  This policy (together with our website terms of use) explains how, why and what personal data we collect about you, as well as information about how we will handle (process) that personal data.  Please read through this document carefully, and do contact us if you have any questions about this policy. By visiting our website (www.shizl.com) you are accepting and consenting to the practices described in this policy.

  1. About Us

Shizl is a group of legal entities operating within the same group. The companies within our group, which are covered by this policy are as follows:

  • Shizl Limited (company number 13786365); and
  • Stanneylands Holdings Limited (company number 13545753).

This policy relates to all companies within our group, but when we refer to “We”, “Us” or “Our” in this policy, we are referring to the relevant entity within our group which will process your personal data.  Shizl Limited is the entity within our group which is responsible for our website and is the Controller of  the personal data collected about you (as that term is defined in data protection legislation).

Our data protection team can be contacted at help@shizl.com

  1. What information do we collect from you?

We may process the following data about you:

2.1 Information you give us.

What personal data might you supply to us? How and why we process your personal data:
Account Information: Information about you which relates to your, or your employer’s account with us. This information may include your name, your email address and your telephone and/or mobile number. We will process this data to maintain your account with us, to provide our services to you, to communicate with you and to back up our database.  The reason we process this data is to ensure the proper administration of your account and our business (our legitimate interest) and, where you have entered into a contract with us, for the purposes of fulfilling our contract with you.
Registration Information: Information about you where you have registered your interest in our website.  This information will include your name and your email address. We will process this data so we can deal with your registration and/ or to correspond with you.  The reason we process this data is to ensure the proper administration of your registration and our business (our legitimate interest).  We also work on the basis that by registering your interest in our website, you are consenting to us processing personal data about you, as detailed in this privacy policy.
Subscription and Transaction Data: If you subscribe to use our services, or you purchase documents from our website, you will need to provide certain information to us so that we can deliver the services to you.  The information you supply to us may include your name, your contact details, your card details and other information relevant to your transaction. We will process that data in order to perform our contract with you and to fulfil the transaction/subscription.
Communication Data: If you communicate with us, we may process the information contained in your communication.  This information may include your name and contact information, the content of your communication and any data our website automatically generates when you communicate with us through our website.  For example, you might write to us to express an interest in working for us, or to find out more about our services. We will process that information so we can correspond with you and keep records of such correspondence.  The reason we are processing this data is to ensure the proper administration of our business (our legitimate interest).
Notification Data: Where you have purchased documents / a subscription from us, or where you register to receive emails from us about our business, we will process your data so that we can send such emails to you.  If you prefer not to receive such communications you can change your preferences in your settings, or unsubscribe from our communications at any time. You can also contact us using the information in paragraph 10 below to unsubscribe. The legal basis for us processing this data is that you have consented to such processing either expressly or as a result of you purchasing documents and/or a subscription from us.
Regulatory Data: We may process your personal data if we need to do so to comply with our legal and/or regulatory obligations, so that we can protect the vital interests of you or another person. For example, if you are visiting our premises and you have a medical condition which means we have to put additional measures in place to keep you safe, we may keep a record about that to ensure we can always keep you safe if you visit us again in the future. The reason we will process such data is to protect the vital interests of you or another person.

 

2.2 Other information we collect about you.

We automatically collect technical information about your visits to our website. This is information such as:

  • technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform. This is known as analytical data.
  • other information about your visit(s) to our website such as the pages you viewed, searches you have made and how you have interacted with our website.

We process this data so we can monitor and analyse how our website is used so we can improve our website and our services.

  1. Cookies

Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. For detailed information on the cookies we use and the purposes for which we use them see our Cookie policy. You can change your cookie preferences using the settings on your device.

  1. When will we disclose your personal data to others?
    • We may need to share your personal information with members of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries. These terms are defined in section 1159 of the UK Companies Act 2006. We will only share such personal information where this is necessary for the purposes set out in this policy.

4.2 We will disclose your personal information to third parties in the following circumstances:

  • If we sell or buy any business or assets, in which case we may need to disclose certain personal data to the prospective seller or buyer of such business or assets.
  • If all or most of our assets are acquired by a third party, in which case personal data held by us about our customers will be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce any legal agreement we have with you; or to protect our rights or property, or the safety of us, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
  1. Where do we store your personal data?

Your personal data will be processed within the UK and/or European Economic Area (“EEA”) and in accordance with the requirements of the Data Protection Act 2018 and associated legislation.  In some limited situations we may have to process your personal data outside of the UK and/or EEA.  If this is the case, we will only transfer such personal data to third parties where we have checked such third parties to ensure they will protect your personal data in a similar way to us, with appropriate standards and safeguards.  We will also have contractual provisions in place with such third parties to ensure that your personal data will be protected in the same way as it is in the UK and that the rights you have in respect of your personal data are respected.  You consent to the transfer of your personal data outside of the UK and/or EEA, as long as we comply with these requirements.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, and we will maintain appropriate technical and organisation measures to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

  1. How long will we keep your personal data and when will it be deleted?

(a)          We keep your personal data information until we have completed the purpose(s) for which we collected it. After this time, it will be deleted unless there are legal or regulatory reasons we need to retain it.  If this is the case we will delete the personal data which is no longer needed, and when the regulatory or legal reason no longer applies, we will delete the remaining personal data. In some cases, the purpose for which we are processing your personal data will last for a considerable period (for example, if you are a long-term subscriber, we will need to store your data until our relationship with you comes to an end). In other cases, you might not interact with us for a long period, but then renew your relationship with us.  In this case, we will resume collection of your personal data as set out in this policy.

(b)          We will consider a number of factors when we decide how long we will store your personal data.  This includes the type of personal data we hold about you, if that personal data is sensitive in nature, whether you might be harmed if that personal data was disclosed without authority and other legal factors. We will also consider how you engage with us and what contracts we have in place with you.

(c)           We may need to retain your personal data where this is necessary to comply with our legal or regulatory obligations, or to protect your vital interest or the vital interests of another person.

  1. Data security

We implement various measures to keep your personal data safe and keep it secure.  This includes ensuring that only those people who need to access your personal data can see it. We will make sure the people who can access your personal data receive training so they understand their responsibilities to keep your personal data safe and secure, and to ensure they understand and respect your rights under data protection laws.  We will also make sure they keep your personal data confidential.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

  1. Your rights

8.1 Under data protection laws you have the following rights:

  • The right to access the personal data we hold about you. For more information about how you can do this, please see paragraph 8.2 below;
  • The right to have your personal data corrected if there are errors or inaccuracies in it, or your personal data is incomplete;
  • The right to restrict the processing we carry out in relation to your personal data;
  • The right to object to the processing we carry out in relation to your personal data;
  • The right to have the personal data we hold about you provided to you in a useable format (which means a format that is easy to read and understand);
  • The right to complain to a supervisory authority (in the UK this is the Information Commissioner’s Office) about how and/or why we are processing your personal data;
  • The right to tell us you no longer consent to us processing your personal data. In practice you will usually agree in advance to us using your personal data for marketing purposes and if you no longer wish us to use your personal data for marketing purposes, you can opt out of receiving such marketing messages at any time. You can do this either by unsubscribing from the marketing messages we send you or by notifying us in writing using the email address below (in paragraph 10).

8.2 You can ask us to provide you with details of any personal data we hold about you.  You do not have to pay us a fee to access your personal data unless you have made repeated requests leading us to believe (reasonably) that the intention of your request is unfounded and/or its purpose is to significantly frustrate the operation of our business. In this situation, we may charge you a reasonable fee to access your personal data or we may decide not to comply with your request.  We will tell you if this is the case. We will ask you to provide appropriate evidence of your identity before we respond to your request, to ensure we are providing information relating to you (and not someone else). Typically, this identification evidence will be a photocopy of your passport or photo driving licence, which a solicitor or bank has certified as being a true copy of the original and a copy of a recent utility bill detailing your current address.

8.3 Our website may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates.  If you follow a link to any of these websites, these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies.  Please check these policies before you submit any personal data to these websites.

8.4 If you think that any of the data we hold about you is incorrect or inaccurate, you can contact us to correct such data.  To do this, please get in touch with us using the email address in paragraph 10 below.

  1. Changes to our privacy policy

Any changes we make to this policy in the future will be posted on this page. Please check back frequently to see any updates or changes to this policy.

  1. How to get in touch

Questions, comments and requests regarding this policy are welcomed and should be addressed to:

Shizl Limited

Data Protection Team
23 Orchid Close
Wilmslow
SK9 4FY
Email: help@shizl.com