2. For the purpose of the DPA and GDPR we are the data controller and any enquiry regarding the collection or processing of your data should be addressed to Clint Botha at our address Dry Leas Sportsground, Marlow Road, Henley-on-Thames, Oxfordshire , RG9 2JA
3. By using the Website you consent to this policy. We are registered with the Information Commissioner’s Office for this purpose.
Information we collect
4. We will collect personal data on this Website only if it is directly provided to us by you the user, e.g. your e-mail address, date of birth, name, home or work address and telephone number, and therefore has been provided by you with your consent. Normally you will only provide such details if are making a product or service purchase from us.
5. We also use analytical and statistical tools that monitor details of your visits to our website and the resources that you access, including, but not limited to, traffic data, location data, weblogs and other communication data (but this data will not identify you personally).
6. Your payment information (e.g. credit card details) provided when you make a purchase from our website is not received or stored by us. That information is processed securely and privately by the third party payment processors that we use. Physiolistic will not have access to that information at any time. We may share your personal data with our payment processors, but only for the purpose of completing the relevant payment transaction. Such payment processors are banned from using your personal data, except to provide these necessary payment services to us, and they are required to maintain the confidentiality of your personal data and payment information.
Use of your information
7. We may hold and process personal data that you provide to us in accordance with the DPA and GDPR.
8. The information that we collect and store relating to you is primarily used to enable us to provide our services to you, and to meet our contractual commitments to you. In addition, we may use the information for the following purposes:
8.1. To notify you about any changes to our website, such as improvements or service/product changes, that may affect our service;
8.2. If you are an existing customer, we may contact you with information about goods and services similar to those that were the subject of a previous sale to you;
8.3.3 Where you have consented to receive such information, to provide information on other parties’ products or services that we feel may be of interest to you;
8.4. Where you have consented to receive our e-newsletters, from time to time to provide that to you.
Disclosure of your information
9. We may disclose your information to regulatory bodies to enable us to comply with the law and to assist fraud protection and minimise credit risk.
10. If you do not want us to use your data for our use, you will have the opportunity to withhold your consent to this when you provide your details to us on the form on which we collect your data, or you can do so by writing to us at the address detailed in clause 2, or sending us an email to firstname.lastname@example.org at any time.
Controlling the use of your data
13. If you have given us consent to use your data for a particular purpose you can revoke or vary that consent at any time. If you do not want us to use your data or want to vary the consent that you have provided you can write to us at the address detailed in clause 2 or email us at email@example.com at any time.
Where we store and transfer your data
14. Your data is held in state-of-the-art secure UK data centres managed by iomart, one of the UK’s leading data centre providers. Our supplier is ISO 27001 certified and employs an array of methods to ensure that your data is kept safe, secure and accessible including:
14.1 An Enterprise class firewall system that prevents unauthorised access to the servers and data.
14.2 Redundant hardware ensures that failure of a component piece of hardware does not cause loss of access to systems or loss of data.
14.3 Physical security is provided through 24/7/365 data centre staffing and with CCTV cameras, motion detectors and a secure key fob access system.
14.4 Any completed hard copy forms are scanned and stored on our password protected
local drive with the hard copies being shredded.
15. We do not use or disclose sensitive personal data, such as race, religion, or political affiliations, without your explicit consent.
17. Otherwise, we will process, disclose or share your personal data only if required to do so by law or in the good faith belief that such action is necessary to comply with legal requirements or legal process served on us or the website.
18. You have the right to opt out of our processing your personal data for marketing purposes by contacting us at firstname.lastname@example.org
19. The transmission of information via the Internet or email is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of data while you are transmitting it to our site; any such transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.
20. Where we have given you (or where you have chosen) a password so that you can access certain parts of our site, you are responsible for keeping this password confidential. You should choose a password it is not easy for someone to guess.
Third party links
22. You might find links to third party websites on our website. These websites should have their own privacy policies, which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.
once you click on advertisements on our Website.
23. The DPA and GDPR give you the right to access information held about you by us. Please write to us or contact us by email if you wish to request confirmation of what personal information we hold relating to you. You can write to us at the address detailed in clause 2, above, or by email to email@example.com There is no charge for requesting that we provide you with details of the personal data that we hold. We will provide this information within one month of your requesting the data.
24. You have the right to change the permissions that you have given us in relation to how we may use your date. You also have the right to request that we cease using your data or that we delete all personal data records that we hold relating to you. You can exercise these rights at any time by writing to us at the address detailed in clause 2, above, or by email to firstname.lastname@example.org
Changes to this policy
25. We may update these policies to reflect changes to the website and customer feedback. Please regularly review these policies to be informed of how we are protecting your personal data.
Version: Jan 2019