Over 45 years experience as precision engineers, specialist grinders, all types of cylindrical profile rolling dies and specialist taps.
GM 2012 Limited understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of all of our customers and web site visitors and will only collect and use personal data in ways that is described here, and in a way that is consistent with our obligations and your rights under the law.
The European Union have brought into law a new data protection regulation knows as GDPR (General Data Protection Regulation) which comes into effect on the 25th May 2018.
The UK Government are also bringing into Law the same regulations when the UK leaves the Europe Union.
GDPR sets out laws for how companies and organisations can collect, use and processes your personal information or data. This is known as “Personally Identifiable Information” or PII for short.
GM 2012 Limited (also referred to as “we”, “us” and “our”) is the data controller and is responsible for your personal data when you interact with our company.
Our registered office is as above.
This privacy notice explains how we use your persona data: how it is collected, how it is held, and how it is processed. It also explains your rights under the Law relating to your personal data.
Your privacy is important to us and we recognise the importance of keeping your personal information secure.
If you are unhappy in the way we have processed your data you have the right to complain, please raise your concerns with us at the earliest opportunity. We take all complaints as genuine and seriously. We will do everything we reasonably can to resolve issues to your satisfaction.
You also have the right to complain to The Information Commissioners’ Office (ICO) which is the UK supervisory authority for data protection issues, they can be contacted via their website www.ico.org.uk.
Further information about your rights can also be obtained from the Information Commissioner’s Office or your local Citizens Advice Bureau.
Under the GDPR, you have the following rights, which we will always work to uphold:
For more information about our use of your personal data or exercising your rights as outlined above, please contact us using the details provided in Part two above.
Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (the “GDPR”) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’.
Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data, and other online identifiers.
The personal data that we use is set out in Part six below.
“Personally Identifiable Information” (PII) means any data which can identify a living person.
We may collect some or all of the following personal data which we categorise as follows (this may vary according to your relationship with us):
Some of this information is essential for us to perform certain duties, If you refuse to supply us with the information we request we may not be able to perform a contract or may have to limit certain features of our web sites(s) or services that we offer.
We may collect and process your information when you interact with us for example in one or more of the following ways:-
Under GDPR, we must always have a lawful basis for using your personal data. This maybe because the data is necessary for our performance of a contract with you, our legal obligation, because you have consented to our use of your personal data or because it is in our legitimate interest to use it.
Your personal data may be used for one or more of the following purposes:
You will not be sent any unlawful marketing or “spam”. We will always work to fully protect your rights and comply with our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003, and you will always have the opportunity to opt-out.
Where Consent is our lawful basis of processing you have the right to stop us from processing your information. You can also unsubscribe or opt-out at any time from our marketing by Contact Us via our web site contact form or clicking on an unsubscribe link in our emails or by replying to text messages with the word unsubscribe or by telephoning us.
We do not use any systems for automated decision-making.
We may disclose your personal information to third parties who will need to process your information for example:-
When we use third parties we enter into a legally binding contract; under this contract our third-party supplier has a legal obligation of confidentiality and to protect your information in accordance with GDPR and will only process your information in accordance with our instructions.
When you interact with our company we will process certain types of data which is categorised in section 6 above. We process this category of information as follows:
|Category of data||Legal basis for processing|
|Identity data||Contract, Legal obligation, Legitimate interest|
|Contact details||Contract, Legal obligation, Legitimate interest|
|Financial data||Contract, Legal obligation, Legitimate interest|
|Transaction data||Legal obligation, Legitimate interest|
|Technical data||Legitimate interest|
|Profile data||Legitimate interest|
|Usage data||Legitimate interest|
|Marketing Data and Communication data||Consent, Legitimate interest|
|Special category data||Consent, Legitimate interest|
Contract – For example, we need this information to fulfil a contractual or obligation or you have asked us to send you a quotation or information before entering into a contract.
Legal Obligations - We process this category of data to comply with accounting or reporting obligations, for example disclosing employee salary details to HMRC, submitting accounting information to HMRC.
Legitimate Interest - Is where we may process your data to improve our services to you. To develop, improve and grow our business. For the provisions of administration and IT services. Security and fraud prevention. Determine how effective is or to improve our marketing. To keep our website and services relevant and updated. To deal with you and respond to any requests you may have. Fraud prevention.
Consent – is where you have given us permission to use your information, you can withdraw your consent at any time.
We may also aggregate your information for statistical and analytical purposes, where we do so you will not be identified in the aggregated data set.
We work hard to keep all of your data safe and use a combination of technical, administrative and physical controls to maintain the security of your data. However, no method of processing data is completely secure. If you have a security concern or would like a more in-depth explanation of our security policies please use our Contact Us form.
We have various measure in place to protect your personal data.
Our websites are accessed using HTTPS meaning that any information send or received is encrypted.
We may disclose your personal data to third parties. Where we do, we require that the recipient have in place appropriate technical and organisational measures to protect your data. We may also be compelled by law to disclose your personal data to third parties.
Your personal data may also be processed outside of the European Economic Area (EEA) by third parties who work for us which could include digital marketing and social media agencies for the purpose of marketing and advertising. Where your data is processed outside of the EEA we require that appropriate safeguards are in place to the same standard as expected within the EEA.
Where we have issued you with a password and or username to access our services (email, web site, online storage etc..) it is your responsibility to keep this information safe, secure and confidential.
We will process your personal data for as long as our relationship lasts or inline with our legal obligations.
Contract - We will keep this type of information for a minimum of seven years after any contract or relationship has ended. To honour warranty claims for products or services we have supplied. We also need this information to protect our company from legal claims.
Legal Obligations - We will keep this type of information for a minimum of seven years to allow us to fulfil our legal obligations for example record keeping for HMRC.
Legitimate Interest – We will only keep your information for as long as necessary. For example:
Sensitive data - If you request us to keep your information for future use we will destroy your data at your request or on completion of a contract.
You have the right to obtain the following from us:-
In most cases we can not charge a fee for providing you with the information we hold about you, we can charge a reasonable fee if you request further copies or your request is unfounded or excessive.
We will normally supply your data within 28 days, but if your request is complex we may extend this timescale by a further two months. You will be informed within 28 days if this is the case.
We can refuse to comply with your request if it is unfounded or excessive in which case we will inform you within 28 days.
We may require proof of identity before releasing your data to you.