FarmED Data Protection & Privacy Statement
1. COMMITMENT TO DATA PRIVACY AND SECURITY. FarmED CIC (“We” “Us” “Our”) are committed to protecting and respecting your data & privacy. This policy sets out the basis on which any personal data We collect, or that you provide to Us, will be processed and stored by Ourselves. For the purpose of the GENERAL DATA PROTECTION REGULATION 2018, the data controller is FarmED CIC, Honeydale Farm, Station Road, Shipton-under-Wychwood, Chipping Norton, Oxfordshire, OX7 6BJ.
2. INFORMATION WE MAY COLLECT FROM YOU. We collect and process the following information about you:
-
Name, postal address, telephone number, email address and business name if applicable, either over the telephone, in writing or over email
-
Any bank details you have provided to Us in order to process payments electronically
-
Bookings made with Us and contracts undertaken with Us.
-
Details of any complaints procedures which may have been raised with Us
-
We do not collect any sensitive information for which stronger legal protection may apply.
3. IP ADDRESSES, COOKIES & INTERNET TRAFFIC. Any personal information collected by visiting www.farm-ed.co.uk including, but not limited to, traffic data, location, operating system and browser type, are not held by the Company, and are purely utilised by website systems to anonymously monitor trends in online traffic. IP addresses or cookies are not linked to personally identifiable information.
4. LINKS. Our websites contain links to other sites. Please be aware that FarmED CIC is not responsible for the privacy practices of such other sites. This privacy statement applies solely to information collected by this website. However, if you have any concerns about privacy on linked sites please let us know.
5. STORAGE OF PERSONAL DATA. All data collected from you and relating to your business with Us is stored on our secure servers. By submitting data, placing bookings or undertaking a contract with Us, you agree to the transfer, storage and processing of this and all relevant information on secure servers. FarmED CIC does not transfer any personal data outside the European Economic Area (EEA).
6. PAYMENT CARD INDUSTRY DATA SECURITY STANDARD (PCI DSS) sets the requirements for organisations and sellers to safely and securely accept, store, process, and transmit cardholder data during credit card transactions to prevent fraud and data breaches. FarmED adheres to PCI DSS using external auditors and our websites undergo monthly automated scanning to ensure PCI DSS standards are maintained. FarmED CIC undergoes annual audits to reassess and address any issues with non-website based PCI DSS compliance.
7. HOW WE USE YOUR INFORMATION. Personal and business information collected by Ourselves is not used for marketing purposes, and is strictly limited to aiding Us to carry out Our obligations arising from any contracts entered into between you and Ourselves, and to notify you of any changes to Our service or terms of business. Email address details are used when preparing and sending invoices, business newsletters, and compiling email campaign reports. Opportunities to unsubscribe from newsletters are provided with every mailing.
8. DISCLOSURE OF YOUR INFORMATION. No information We collect is used for marketing purposes, or passed or disclosed to third parties for the purposes of marketing. In the event that FarmED CIC (the Company) is acquired by a third party, personal data relating to current orders and contracts will be transferred as a business asset. We are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply Our Terms of Business, Our Terms and Conditions of Sale, or any other agreements to protect Our Rights. This includes (but is not limited to) exchanging information with organisations for the prevention, detection or investigation of a crime, national security, the assessment or collection of tax, or judicial or ministerial appointments.
9. YOUR RIGHTS. You have the right to know what information we hold in regard to yourself, and We are under a legal obligation to disclose Our holdings should you request We do so. We will presume that you consent to us continuing to hold your personal information unless you contact us informing otherwise. You do have the right to withdraw consent for the use of your personal data, and to ask Us to erase your personal details from our servers.
10. ACCESS TO INFORMATION The GENERAL DATA PROTECTION REGULATION 2018 gives you the right to access and/or amend information We hold about you should you wish. Please contact Us with your requests by writing to FarmED CIC, Honeydale Farm, Station Road, Shipton-under-Wychwood, Chipping Norton, Oxfordshire, OX7 6BJ.
11. NOTIFICATION OF CHANGES. If we decide to change our privacy policy, we will post those changes on this document so our users are always aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.
Contact:
Designated Lead For Data Protection & Privacy Policy
Name: Sally Pullen
Job role: Operations Manager
Email: sally@farm-ed.co.uk
This policy statement came into force on: 1/2/2024
This policy statement and accompanying procedures were last reviewed on:1/2/2024