DLP Limited (“DLP”) is the UK’s leading manufacturer of accessible bathroom, kitchen and daily living products.
DLP Limited, Unit L, Snugborough Trading Estate, Braddan, Isle of Man, IM4 4LH
DLP is committed to protecting the data of our customers, suppliers, employees and business partners in line with the GDPR, and the obligations it places upon us.
The processing of Personal Data by DLP will always be in line with the General Data Protection Regulation (GDPR) and in accordance with any country-specific legislation applicable to DLP and its parent or subsidiary companies.
This Privacy Notice explains why we collect the process Personal Data, and the rights of the Data Subject relating to the collection and processing of Personal Data.
Under the EU’s General Data Protection Regulation: Personal Data is defined as “any information relating to an identified or identifiable natural person (‘data subject’); by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
Who is the Data Controller?
A data controller is the individual or legal person who controls and is responsible to keep and use Personal Data in paper or electronic files. We are the Data Controller as defined by relevant data protection laws and regulation.
The lawful bases for processing are set out in Article 6 of the GDPR. At least one of these must apply whenever personal data is to be processed:
(a) Consent: the individual has given clear consent for DLP to process their Personal Data for a specific purpose.
(b) Contract: the processing is necessary for a contract DLP have with the individual, or because they have asked DLP to take specific steps before entering into a contract.
(c) Legal obligation: the processing is necessary for DLP to comply with the law (not including contractual obligations).
(d) Vital interests: the processing is necessary to protect someone’s life.
(e) Public task: the processing is necessary for DLP to perform a task in the public interest or for DLP official functions, and the task or function has a clear basis in law.
(f) Legitimate interests: the processing is necessary for DLP legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests. (This cannot apply if DLP are a public authority processing data to perform DLP official task.
What Personal Data can be collected:
We may collect and process various types of Personal Data about you including but not limited to:
Full name, address, telephone number, email, gender, address, Internet Protocol address, National Insurance Number, employment records, bank details, criminal record check, health care records.
What are your rights in respect of your Personal Data?
- The data subject’s right of access
- The data subject’s right to rectification.
- Right to erasure or right to be forgotten
- The data subject right to restriction of processing.
- The right to be informed.
- The right to data portability.
- Right to object.
- The data subject right not to be subject to a decision based solely on automated processing
If you purchase a product or service from us your card information is never held by us – it is processed by our third-party payment processors, who specialise in the secure online capture and processing of credit/debit card transactions, as explained below.
We review our retention periods for personally identifiable information on a regular basis. Our Data Retention Policy can be viewed here.
DLP takes reasonable measures to ensure the security and privacy of Personal Information, however should Data Subjects have concerns regarding any aspect of Data Security they should address their concerns to our GDPR contact.
We will not sell or rent your information to third parties
We will never share your information with third parties for marketing purposes
Who will have access to your Personal Data?
Information stored by DLP is subject to protocols and policies which are in place to manage and record your data privacy and preferences correctly, and to ensure that your data is stored securely to protect against its loss, misuse and alteration.
DLP takes steps to ensure that any businesses with which we share your data will have security protocols and policies in place to manage and record your data privacy and preferences correctly and that your data will be stored correctly, in accordance with GDPR.
Disclosure of your personal information
We may exchange your personal information with certain third parties to assist in managing, administering and executing services including but not limited to:
- Organisations undertaking reviews of the accuracy and completeness of our information;
- Organisations maintaining our IT systems and providing information technology services
- Organisation undertaking verification services
Where will my Personal Data be processed?
As a data controller DLP will retain all your information inside the European Economic Area (EEA). Where DLP may transfer your data to a third party, we will ensure that the third party processes your data inside the European Economic Area (EEA), or has been allocated an ‘adequacy’ rating by the European Commission.
Social Media including Facebook, Twitter and LinkedIn
Any social media posts or comments you send to us (on the DLP Facebook page, for instance) will be shared under the terms of the relevant social media platform (e.g. Facebook / Twitter) on which they are written and could be made public.
Other organisations, not DLP, control these platforms. We are not responsible for this kind of sharing. We recommend you should review the terms and conditions and privacy policies of the social media platforms you use. That way, you will understand how they will use your information, what information relating to you they will place in the public domain, and how you can stop them from doing so if you are unhappy about it.
Any blog, review or other posts or comments you make about us, our products and services on any of our blogs, reviews or user community services will be shared with all other members of that service and the public at large. Any comments you make on these services and on social media in general must be not offensive, insulting or defamatory. You are responsible for ensuring that any comments you make comply with any relevant policy on acceptable use of those services.
Like many other websites, the DLP website uses “Cookies”.
‘Cookies’ are small pieces of information sent by us to your computer (via your web browser) and stored on your hard drive to allow the DLP website to recognise you when you visit the website again in the future. They collect statistical data about your browsing actions and patterns and do not identify you as an individual. They help us to improve our website and deliver a better more personalised service.
It is possible to switch off cookies by setting your browser preferences. To find out how to do this please consult your browser help facility. Turning cookies of may result in a loss of functionality when browsing the DLP’s websites.
Review of this Policy
Name and address of GDPR Contact
Telephone: 01905 823298
Post: DLP Limited, Unit L, Snugborough Trading Estate, Braddan, Isle of Man, IM4 4LH
Name and Address of the Supervisory Authority
Isle of Man Information Commissioner’s Office
Isle of Man
Phone: + 44 (0)1624 693260 Email: email@example.com Website: www.inforights.im