HSEQOneStop (HSEQneStop Ltd and referred to as the company) is committed to protecting your right to privacy as a user of our online documents, consultancy, Recruitment and CV Services. It is our policy to respect the privacy of private communication.
The information you provide to us will be held by the company on servers based in the UK, and, except as explained below, we will not transfer it, or authorise its transfer, outside the UK.
The company will always adhere to UK Data Protection Legislation, including but not limited to, the Data Protection Act 2018 and EU Regulation 2016/679 General Data Protection Regulation (“GDPR”).
Other than as stated below, we do not hold or use any information that you provide, or which we collect, outside the European Economic Area (“EEA”), nor do we transfer it to, or share it with, others within or outside the EEA (except when we believe in good faith that the law requires it).
Information About Us
HSEOneStop Limited is a private limited company, registered in England under company number 12486276. Our registered trading address is
13 Shirley Road,
Our VAT Number is tbc
What is Personal Data?
Personal data is defined by the GDPR and DPA 2018 as ‘any information relating to an identifiable person who can be directly or indirectly identified, in particular by reference to an identifier’. In simpler terms, personal data is any information about you that enables you to be identified (either on its own or when combined with other data we may hold on you). Personal data covers obvious information such as your name and contact details, but it also covers information such as identification numbers, electronic location data, and other online identifiers.
Article 6(1)(f) of the GDPR states we can process your data where it “is necessary for the purposes of the legitimate interests pursued by [us] or by a third party, except where such interests are overridden by the interests or fundamental rights or freedoms of [you] which require protection of personal data.”
What Data Do We Collect?
We aim to keep personal data collection and storage to a minimum. Your privacy and trust are important to us therefore we process very little personal data.
In addition, when you purchase a subscription from us, your personal data is necessary for the formation (and subsequent performance) of the contract between you the company and the completion of your purchase.
The information we do or may collect includes:
- Customer name
- Company name
- Email address
- Physical Address
- Telephone numbers
- Your document downloads history
What Do We Use Your Data For?
- Providing and managing your account and/or subscription(s).
- Supplying you with
- Provide the service and support necessary
- To send communications in response to support and service requests
- Provide you with updates, process payments
- Related products
- Product updates
- To provide you with updates to services offered by us
- Market Research
- Industry updates
- Legislative changes
- Account access
- Account activity, billing
- Service interruptions
- Please note that some emails are an integral part of the service when registering with the company and cannot be opted out of and that by registering, you are consenting to us using your personal data to send such emails. We will never send you any spam and always aim to ensure that our emails will be genuinely useful.
- Building up a profile of your interests and preferences based on your download history (this is not an automated decision-making process and all such activity requires human involvement).
- We receive a copy of some of the above information as security and transaction confirmation from our payment platforms when you purchase or pay for a service from us. We do not store or retain any financial information.
You can choose to stop receiving general email by utilising the unsubscribe link in our emails.
What Cookies Do We Use?
Our website uses a 1st party cookie to find out how people are using our website and to make some features of the website work. This information is anonymous and cannot be linked to one individual. We use this information to enable us to continually make improvements to our websites and the user experience.
Below are details of the cookies that may be used.
|Third-party Cookies||This is collected by LinkedIn.|
|Sharing via facebook||This is required for sharing via facebook|
|Sharing via Twitter||This is required for sharing via Twitter|
|Sharing via Instagram||This is required for sharing via Instagram|
|Popup page view||
To show or hide popups as per user preference
|This is a required function|
Our website uses social media icons such as Facebook, LinkedIn and Twitter logos and other social sharing widgets. By using these features you will be connecting to and sharing information from your browsing session with these organisations. If you are logged into your social media account it is also possible that they will connect your activity on our site to your social media account.
This is also the case if you access our social media pages on a social media platform. The respective social media company may add your interaction to any information they may already have about you or your interests.
In all cases, in that transfer of data the social media provider is a data controller in their own right and responsible for what they do with your personal data. If you want to find out more it is worth accessing their privacy notices
How Long Do We Keep Your Personal Data?
The personal data that you provide when registering with the company is retained until you ask us to delete it. If you wish to delete your account please email email@example.com and once we have deleted it, we shall advise you.
For legal reasons, some information may have to be retained for a period of time for legal reasons but not longer than 6 years. This information is generally communications between the company and client to aid with future disputes or claims.
We also retain records of subscriptions and transactions for financial accounting purposes.
How and Where Do We Store or Transfer Your Personal Data?
We only store your personal data in the UK. This means that it will be fully protected under the GDPR.
As explained below, certain personal data will be made accessible to trusted and secure third parties related to business with the company. Additional steps have therefore been taken to ensure that your personal data will be treated just as securely and safely as noted within this policy.
Do We Share Your Personal Data?
Your data will not be given to any 3rd parties other than trusted who assist the company in operating and conducting our business for providing you with our services.
What Are Your Rights
Individual data subjects have the following rights under the GDPR which we will always work to uphold. Inclusive of:
- The right to access your personal data by request.
- The right to have your personal data rectified if any of your personal data is inaccurate or incomplete.
- The right to erasure (also known as the right to be forgotten). You can exercise this right by contacting us directly by email. Please note that if you delete your account, it will be deleted immediately and if you have an active subscription, that subscription will be cancelled.
- The right to restrict or object to our processing of your personal data for particular purposes. For active subscriptions, support or consultancy services which are an integral part of our service.
- The right to data portability. This means that you can ask us for a copy of your personal data to re-use with another service or business. Please note, however, that this right applies only if you have provided personal data to us directly, we are using it with your consent or for performance with a contract, and your data is processed using automated means.
For more information about our use of your personal data or exercising your rights as outlined above, please contact us at firstname.lastname@example.org
Further information about your rights can be obtained from the Information Commissioner’s Office (ICO). You also have the right to lodge a complaint with them if you feel that your rights have been breached.
How Can You Access Your Personal Data?
All personal data provided by you during registration, along with details of your subscription and download history, can be accessed via your on-line registration account.
If you wish to make a data subject access request, please do so in writing, sent to the email or postal address within this policy, clearly marking your correspondence as a subject access request.
We do not normally charge for subject access requests unless they are ‘manifestly unfounded or excessive’ (e.g., repetitive). We will respond to your subject access request within one month of receiving it. In the unlikely event that your request is particularly complex, a further two months may be required but we will keep you informed if this is the case.
How to Contact Us
To contact us about anything to do with your personal data and data protection, including to make a subject access request, please use the following details and we will respond as soon as possible:
- Email: email@example.com
- Postal Address: 13 Shirley Road, Maidenhead, Berkshire. SL6 4PH