Wattech take our clients data privacy seriously. Here you can find our GDPR & Data Policy.
So what is this General Data Protection Regulation (GDPR)?
General Data Protection Regulation (GDPR) became law in May 2018. Its purpose is to strengthen and unify data protection for individuals within the European Union (EU), whilst addressing the export of personal data outside the EU. The primary objective of the GDPR is to give citizens back control of their personal data. Once GDPR takes effect it will harmonize previous and other data protection regulations throughout the EU.
Us and your data
Wattech Ltd is committed to keeping your personal data safe. Wattech Ltd staff collect nothing but the essential data to enable us to carry out our services with you. Our staff will never ask for your direct bank account details such as pin numbers or passwords. Wattech Ltd will never sell your data to any 3rd parties nor will we use your details for publicity purposes such as newsletters or mail unless we have your expressed permission. Where we require proof of I.D for hires we will take hard copies only these will not be recorded digitally. Our policy of hard copy destruction can be found in the security section.
Where do we store your data?
Wattech Ltd use the following systems: Current RMS – Cloud Based Rental System Xero – Cloud based Accounting System SimplyPATs – Local PC based PAT Testing results recording software Microsoft OneDrive – Cloud storage system used for backup of local data and storage of PAT Test certificates required by law. PayPal – Merchant card payment processing Wix – Website hosting, tracking and online store All of the cloud-based systems (including PayPal and wix) used by Wattech Ltd are compliant with GDPR and have their own policies in place to protect your data.
How long is my data stored for?
Wattech Ltd carry out regular data sweeps to delete data that is no longer required to be kept by law. For accounting purposes, we keep data for a period of 4 years whilst invoicing data is kept for a period of 7 years. For health and safety, and asset safety tracking purposes, PAT Test certificates are kept for 4 years from the date certificates were issued.
Our websites, like many others, stores and retrieves information on your browser using cookies. This information is used to make the sites to work as you expect it to. It is not personally identifiable to you, but it can be used to give you a more personalised web experience. These cookies also help us to collect information on how users go about our websites.
All our I.T systems are fully password protected and all phones have security locks. We regularly change passwords and security codes to maintain a high level of security. Any hard copies of data such as event information sheets and hire delivery notes etc are shredded using a cross shredder after the event. As an added method of security shredded information is then burnt.
Card Payment Information
Card payments are processed by Paypal. To process card payments, we are required to collect information such as your card details, name the card is registered to and the address and postcode. All these details are entered in to the Paypal payment system directly and we do not keep any record of these details.
What happens in the unlikely event of a security breach?
In the very unlikely event of a security breach, we will notify any affected clients and will also report the breach to the relevant supervisory authority within 72 hours. Upon us becoming aware of a security breach all security measures will be revised with passwords changed with immediate effect and where required police and cybercrime authorities notified immediately.
Requesting a copy or destruction of data kept about yourself
You can request a copy or the destruction of the data we hold on you at any time. All requests must be made in writing. Please send your requests to Wattech Ltd, 11, Llewellyn Park Drive, Morriston, Swansea. SA6 8PF. All requests will be processed within 1 month.
Reporting Data Breaches
To report a possible data breach please contact us in the first instance to enable us to carry out a full investigation and to put our data security breach action plan in place. Please call us on 01792 805011 or you can write to us at our head office address.