Privacy Policy

Important information

Pinefield Glass Ltd is committed to protecting the privacy and security of your personal information. This privacy policy aims to give you information about how we collect and process your personal data and applies to anyone who buys any of our products, uses any of our services, and uses our website.
It is important that you read this privacy notice in conjunction with any other related notices which we may issue on specific occasions relating to how we process your personal data.

The kind of information we collect about you

Personal data means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

The personal information we collect, store, and use includes some or all of the following:

• Individual’s name / company name / trading name
• Company registered address
• Company trading address
• Individual’s address
• Company registration number
• Company VAT registration number
• Bank details
• Contact names
• Contact telephone numbers
• Contact email addresses
• Purchase history

It is important that the personal data we hold is accurate and current. It is your responsibility to keep us informed if your personal information changes during your relationship with us.

How is your personal information collected?

We collect personal information about you directly from you at the time you engage our services and, where required, from third-party credit referees and credit checking agencies.
We may collect additional personal information in the course of performing our contract with you in order to provide our products and services to you during the period of your contract with us.
If you fail to provide certain information when requested, we may not be able to perform the contract we have entered into with you.

How we will use your personal data

We will use your personal information in the following circumstances:

• To perform the contract we have entered into with you.
• To comply with legal obligations.
• Where we have your consent.
• Where it is necessary for our legitimate interests and/or your legitimate interests and fundamental rights do not override those interests.

We may also use your information in the following situations:

• Where we need to protect your interests (or someone else’s interests).
• Where it is needed in the public interest.

Marketing

We strive to provide you with choices regarding certain personal data uses, in particular around marketing and advertising. You will receive marketing communications from us if you have requested information from us or purchased products or services from us.
We will get your express opt-in consent before we share your personal data with any third party for marketing purposes.

Automated decision making

We do not use automated decision-making. If we introduce this process, we will notify you in writing, giving 30 days’ notice.

Data sharing

We may have to share your personal data with third parties, including third-party service providers and other entities in our group. We require these parties to respect the security of your data and to treat it in accordance with the law.
We will not generally transfer your personal information outside the EU but, if we do, you can expect a similar degree of protection in respect of your personal information.

Sharing personal information with third parties

We will share your information with third parties where required by law, where it is necessary to administer our contract with you, or where we have another legitimate interest in doing so.

Third parties include other entities within our group and third-party service providers (including our suppliers), such as but not limited to:

• Our accountants
• Credit reference and fraud agencies
• Debt collection agencies
• Our suppliers

All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal information in line with our policy.

Our website may include links to third-party websites. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements.

Data security

We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors, and other third parties who have a business need to know.

We will notify you of any suspected data security breach along with the applicable regulatory body where we are legally required to do so.

Data retention

How long will your information be kept?

We will only retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including satisfying any legal, accounting, reporting, or guarantee requirements.

By law, we have to keep basic information about our customers, including contact, identity, financial, and transaction data, for seven years after you cease being a customer for tax purposes.

Rights of access, correction, erasure, restriction, and transfer

Under certain circumstances, by law, you have the right to:

• Request access to your personal information (“data subject access request”).
• Request correction of the personal information that we hold about you.
• Request erasure of your personal information where there is no good reason for us continuing to process it.
• Object to processing of your personal information where we are relying on a legitimate interest.
• Request the restriction of processing of your personal information.
• Request the transfer of your personal information to another party.

If you wish to review, verify, correct, or request erasure of your personal information, object to the processing of your personal information, or request that we transfer your personal information to another party, please contact the Data Protection Team in writing.

Right to withdraw consent

In the limited circumstances where you may have provided your consent for the collection, processing, and transfer of your personal information for a specific purpose, you have the right to withdraw your consent at any time.

To withdraw consent, please contact our Data Protection Team in writing. If you withdraw your consent, this will not affect the lawfulness of any processing carried out before you withdrew consent.

Data Protection Team

We have appointed a Data Protection Team to oversee compliance with this privacy policy. If you have any questions about this privacy policy or how we handle your personal information, please contact the Data Protection Team.

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues. However, we would appreciate the opportunity to deal with your concerns before you approach the ICO, so please contact us first.