This Privacy Policy Statement
(hereinafter referred to as the Statement) is an official document of The
Strategic Centre Ltd. (hereinafter referred to as the Company / Operator) and
determines the procedure for processing and protecting information about individuals
(hereinafter referred to as Users) using the services, information, programmes,
and products of the online platform located on the domain name thesc.org.uk
(hereinafter referred to as the Site).
The purpose of this Privacy Policy is to
ensure the protection of the rights and freedoms of a person in the processing
of their personal data, including the protection of the rights to privacy,
personal and family secrets from unauthorised access and disclosure. This
policy also designed to facilitate adherence to applicable data privacy and
protection laws and regulations which govern the processing of transfer of
Personal Data, in particular UK Data Protection laws.
This Privacy Policy describes how
personal data is processed - any actions (operations) or a set of actions
(operations) performed using automation tools or without using such tools with
personal data, including collection, recording, systematisation, accumulation,
storage, clarification (update, change), extraction, use, transfer (distribution,
provision, access), depersonalisation, blocking, deletion, destruction of
personal data.
Relations connected to the processing of
personal data and information about users of the Site are governed by this
Statement, other official documents of the Operator and the current legislation
of the United Kingdom.
The processing of personal data is
carried out on a lawful and fair basis, acting reasonably and in good faith and
based on the principles of:
·
legality of the purposes and methods of processing personal
data,
·
good faith,
·
compliance of the purposes of processing personal data
with the purposes predetermined and declared during the collection of personal
data, as well as the Company’s authorisation,
·
compliance with the volume and nature of the processed
personal data, methods of processing personal data for the purposes of
processing personal data.
This Privacy Policy governs any kind of
processing of personal data and information of a personal nature (any
personally identifiable information and any other information related to it)
about individuals who are consumers of the Company's products or services.
This Policy applies to the processing of
individual, personal data collected by any means, both active and passive, both
via the Internet and without its use, from persons located anywhere in the
world.
Users' personal data is stored
exclusively on electronic media and processed using automated systems, except
when non-automated processing of personal data is necessary in connection with
the fulfilment of legal or contractual requirements.
VI. HOW WE USE YOUR PERSONAL INFORMATION
The personal data we collect allows us to
process your requests, send you notifications about the progress, new products,
special offers and various events. They also help us improve our services,
content, and communications.
If you do not want to be included in our
mailing list, you can unsubscribe at any time by informing us at the specified
contacts for feedback, as well as making changes to your profile settings on
the site.
From time to time, we may use your
personal data to send important notices containing information about changes to
our terms, conditions, and policies, as well as confirming orders placed by you
and purchases made. Because such information is important to your relationship
with the Company, you cannot opt out of receiving such communications.
We may also use personal information for
internal purposes, such as: conducting audits, analysing data and various
studies in order to improve the Company's products and services, as well as
interacting with consumers.
VII. COLLECTION AND USE OF NON-PERSONAL
INFORMATION
We also collect personal data that does
not allow it to be directly associated with any person. We may collect, use,
transfer and disclose non-personal information for any purpose. The following
are examples of the non-personal information we collect and how we may use it:
·
We may collect personal data such as: occupation,
language, index, unique device identifier, location in which a particular
product is used, in order to better understand consumer behaviour and improve
our products, services and communications.
·
We may also collect personal data/information about what
the user is interested in on our website when using our other products and
services. This personal data/information is collected and used to help us
provide more useful information to our customers and to understand which parts
of our site, products and services are most interesting.
For the purposes of this Privacy Policy,
aggregated data is treated as non-personal data/information.
If we combine non-personal information
with personal information, such combined information will be treated as
personal information for as long as such information is combined.
Users' personal data is not transferred
to any third parties, except as expressly provided for by this Statement.
The processing of the User's personal
data is carried out without time limit, in any legal way, including in personal
data information systems using automation tools or without using such tools.
The User agrees that the Operator has the right to transfer personal data to
third parties, in particular, partner services, postal organisations,
telecommunications operators, etc., solely for the purposes specified in the
"Personal Data Collection" section of this Privacy Policy.
When specifying the user or with the
consent of the user, it is possible to transfer the User's personal data to
third parties that are the Operator's counterparties, provided that such
counterparties undertake obligations to ensure the confidentiality of the
information received, in particular, when using applications.
The User's personal data may be
transferred at the request of the authorised state authorities of the United
Kingdom only on the grounds and in the manner established by the legislation of
the United Kingdom.
The Operator blocks personal data
relating to the relevant User from the moment the User or their legal
representative or authorised body for the protection of the rights of personal
data subjects applies or requests for the period of verification, in case of
revealing inaccurate personal data or illegal actions.
The current legislation of the United
Kingdom and General Data Protection Regulation (GDPR) applies to this Privacy
Policy and the relationship between the User and the Operator.
Under data protection law, you have
rights including:
·
Your right of access - You have the right to ask us for
copies of your personal information.
·
Your right to rectification - You have the right to ask us to
rectify information you think is inaccurate. You also have the right to ask us
to complete information you think is incomplete.
·
Your right to erasure - You have the right to ask us to erase
your personal information in certain circumstances.
·
Your right to restriction of processing - You have the right to ask us to
restrict the processing of your information in certain circumstances.
·
Your right to object to processing - You have the right to object to the
processing of your personal data in certain circumstances.
·
Your right to data portability - You have the right to ask that we
transfer the information you gave us to another organisation, or to you, in
certain circumstances.
Users have the right to send their
requests to the Operator, including requests regarding the use of their
personal data, sending a withdrawal of consent to the processing of personal
data in writing to the address specified in the Contacts section of this
Statement, or in the form of an electronic document signed with a qualified
electronic signature in accordance with the United Kingdom law, and sent via
the feedback form.
The request sent by the User must comply
with the requirements established by the Rules for submitting applications to
the Service and Support Service, namely, contain:
·
number of the main identity document of the user or their representative,
·
information about the date of issue of the specified
document and the authority that issued it,
·
information confirming the user's participation in
relations with the Operator (in particular, the user's ID serial number or a
short (subdomain) name that replaces the ID serial number),
·
signature of the User or their representative,
·
email address,
·
contact phone.
The Operator undertakes to consider and
send a response to the User's request within 30 days from the date of receipt
of the request. You are not required to pay any charge for exercising your
rights.