Website Privacy Statement
BidCraft collects and processes personal data relating to queries raised through the website ‘Get in touch’ form to process those queries. BidCraft is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations.
What information does BidCraft collect and why?
BidCraft collects and processes the data you provide through the ‘Get in touch’ form – your name, email address, and anything you provide within the query.
We will not seek information from third parties using this data.
The data will be stored within the BidCraft email and CRM system.
BidCraft needs to process data to respond to your query as a legitimate interest.
IP addresses and cookies
We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual and we will not collect personal information in this way.
We may obtain information about your general internet usage by using a cookie file which is stored on the hard drive of your computer. Cookies contain information that is transferred to your computer’s hard drive. They help us to improve our site and to deliver a better and more personalised service. They enable us:
- To estimate our audience size and usage pattern.
- To store information about your preferences, and so allow us to customise our site according to your individual interests.
- To speed up your searches.
- To recognise you when you return to our site.
Who has access to data?
Your information may be shared internally, including with other employees of BidCraft if access to the data is necessary for performance of their roles.
Your data may be transferred to countries outside the European Economic Area (EEA) through use of Office365 (although their datacentres are currently in the UK) to communicate with you and store your data (i.e. email). Data is transferred outside the EEA on the basis of Microsoft’s compliance with both EU-US Privacy Shield and EU Model Clauses.
How does BidCraft protect data?
BidCraft takes the security of your data seriously. BidCraft has internal policies and controls in place to try to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by its employees in the performance of their duties.
Where BidCraft engages third parties to process personal data on its behalf, they do so on the basis of written instructions, are under a duty of confidentiality and are obliged to implement appropriate technical and procedural measures to ensure the security of data.
For how long does BidCraft keep data?
BidCraft will hold your personal data for six months after last contact. Any data required to be retained by law will be.
As a data subject, you have a number of rights. You can:
- access and obtain a copy of your data on request;
- require BidCraft to change incorrect or incomplete data;
- require BidCraft to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing; and
- object to the processing of your data where BidCraft is relying on its legitimate interests as the legal ground for processing.
If you would like to exercise any of these rights, please contact Jon Darby at firstname.lastname@example.org.
If you believe that BidCraft has not complied with your data protection rights, you can complain to the Information Commissioner.
No decisions are based on automated decision-making.