Last updated: August 2023
Introduction
At My Content Pal Ltd, safeguarding your personal information is a fundamental principle of our business. We are dedicated to maintaining your trust and confidence, and we want to assure you that we handle your data responsibly and with utmost care. Rest assured, we do not engage in the sale, rental, or trading of any of your data to any third party for any purpose.
Information we collect
Log data
When you visit our website, our servers may automatically log the standard data provided by your web browser. It may include your computer’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, and other details.
Device data
We may also collect data about the device you’re using to access our website. This data may include the device type, operating system, unique device identifiers, device settings, and geo-location data. What we collect can depend on the individual settings of your device and software. We recommend checking the policies of your device manufacturer or software provider to learn what information they make available to us.
Types of Data Collected:
Personal Identifying Information (PII)
Contact Information
Financial Information
Sensitive or Special Categories of Data
Location Data
User Generated Content
Behaviour Data
Communication Data
Social Media Data
Employment Information
Transaction Data
Technical data
Purposes of Data Collection:
Providing Services or Products
Communication and Customer Support
Marketing and Promotions
Personalisation and User Experience
Analytics and Research
Legal and Regulatory Compliance
Contractual Obligations
Employment Purposes
Fraud Prevention and Security
Surveys and Feedback
Social Interaction
Processing of Data
The lawful bases for processing are set out in Article 6 of the UK GDPR. At least one of these must apply whenever you process personal data:
(a) Consent: the individual has given clear consent for you to process their personal data for a specific purpose.
(b) Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.
(c) Legal obligation: the processing is necessary for you to comply with the law (not including contractual obligations).
(d) Vital interests: the processing is necessary to protect someone’s life.
(e) Public task: the processing is necessary for you to perform a task in the public interest or for your official functions, and the task or function has a clear basis in law.
(f) Legitimate interests: the processing is necessary for your legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests. (This cannot apply if you are a public authority processing data to perform your official tasks.)
Data retention
Introduction:
This section outlines our data retention practices and commitment to safeguarding your personal information in compliance with data protection laws and regulations in Scotland. We recognise the importance of managing and retaining your data responsibly, and this policy aims to provide clarity on how we handle data retention.
Principle of Data Minimisation:
We adhere to the principle that personal data should be kept only for as long as necessary to fulfill the purposes for which it was collected. We do not retain your information for longer than required, and we ensure that data is securely disposed of when it is no longer needed.
Retention Period Determination:
Our data retention periods are determined based on various factors, including the nature of the data, the purpose of processing, legal requirements, and industry standards. We regularly review and update these periods to ensure they remain appropriate and aligned with our business operations.
Legal and Regulatory Requirements:
We retain your personal data to fulfill legal obligations imposed on us by relevant laws and regulations in Scotland. These retention periods may vary depending on the specific requirements outlined in the law.
Purpose-Based Retention:
Each category of personal data is retained for a specific period based on the purpose for which it was collected. We define retention periods for different data types to ensure that data is not held for longer than necessary.
Data Security and Integrity:
Throughout the retention period, we implement security measures to protect your data from unauthorised access, loss, or alteration. Our commitment to data security extends to the retention phase to ensure your information remains confidential and intact.
Your Rights:
You have the right to request information about the data we hold about you, including the retention periods for each data category. You also have the right to request the erasure of your data in accordance with applicable data protection laws.
Continuous Review:
We conduct regular reviews of our data retention practices to ensure they align with our commitment to data protection and any changes in laws or regulations. If our retention periods change, we will update this policy accordingly.
International transfers of personal information
The personal information we collect is stored and processed in the United Kingdom, Europe and the United States, or where we or our partners, affiliates and third-party providers maintain facilities. By providing us with your personal information, you consent to the disclosure to these overseas third parties.
We will ensure that any transfer of personal information from countries in the European Economic Area (EEA) to countries outside the EEA will be protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or the use of binding corporate rules or other legally accepted means.
Where we transfer personal information from a non-EEA country to another country, you acknowledge that third parties in other jurisdictions may not be subject to similar data protection laws to the ones in our jurisdiction. There are risks if any such third party engages in any act or practice that would contravene the data privacy laws in our jurisdiction and this might mean that you will not be able to seek redress under our jurisdiction’s privacy laws.
Cookies
The use of cookies on websites is a common practice that involves storing small data files on users’ devices as they browse the internet. Cookies serve various purposes and can enhance the user experience, enable personalised content, and provide insights for website owners. Here are some key points about the use of cookies
Cookie Categories:
Essential Cookies
Functional Cookies
Marketing Cookies
Third-Party Cookies
User Control/Granular Consent
Users should have the option to provide granular consent for different types of cookies. For example, they might consent to functional cookies but reject marketing cookies.
Users should have the ability to change their cookie preferences at any time. Websites should provide clear instructions on how to do this.
Updates to the Policy
At My Content Pal Ltd, we are committed to safeguarding your personal information and respecting your privacy rights. This commitment extends to ensuring that our Privacy Policy remains transparent, comprehensive, and up-to-date. This section introduces you to our approach for updating our Privacy Policy and explains how these updates benefit you.
Why Updates Matter:
Privacy regulations and our services can evolve over time, influencing how we collect, use, and protect your personal information. As a result, our Privacy Policy may undergo periodic updates to reflect these changes accurately.
Staying Informed:
Our Privacy Policy is designed to inform you about how we handle your data and your rights. By reviewing this policy, you can understand how we process your information and how you can exercise control over your data.
Our Commitment:
When we update our Privacy Policy, we remain dedicated to the principles of transparency and accountability. Our goal is to provide you with clear explanations of any changes and to address any questions or concerns you may have.
Notification of Changes:
When we make significant updates to our Privacy Policy, we will notify you by appropriate means, such as by posting a notice on our website or sending you an email. Minor changes may be implemented without direct notification, but the most recent version of our policy will always be accessible on our website.
Review and Consent:
We encourage you to periodically review our Privacy Policy to stay informed about our data practices. If you continue to use our services after an update, it signifies your acceptance of the changes. If you disagree with any modifications, you have the option to cease using our services.
Conclusion:
Our Privacy Policy updates reflect our commitment to providing you with the utmost transparency and respect for your privacy rights. We appreciate your trust in My Content Pal Ltd, and we are dedicated to protecting your personal information while delivering exceptional services.
Thank you for taking the time to understand our Privacy Policy update process. Your privacy and security are our priorities.
Our contact details:
My Content Pal Ltd, 61-63 High Street, Irvine, Scotland, KA12 0AL
Registered in Scotland
Company No. SC691448
VAT Number: GB 405169217
Support@mycontentpal.com