Last updated: 2nd February 2021
HandsHQ is committed to safeguarding the privacy of its users while providing the highest possible quality of service. We will only use the information that we collect about you lawfully (in accordance with Data Protection Legislation). If you have any requests concerning your personal information or any queries with regard to these practices please contact [email protected] In relation to personal data collected by us, we are the data controller. In relation to personal data which is processed by you using our services, you are the data controller and we are the data processor. For more information in relation to our role as data processor, please see our terms and conditions of supply.
You can mail us at:
18 St. Cross Street
Email: [email protected]
You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
We collect the information you supply to us through our on-line registration forms (including your company’s name; the name, date of birth, national insurance number, email, address, job title, phone numbers, photos, educational/qualification information, site/project details and user credentials of you and your company’s employees [and contractors]; and details of contact content including queries and complaints).
Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Generally we do not rely on consent as a legal basis for processing your personal data other than in relation to [informing you of those of our services that we think might be of interest to you and to] sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.
You can ask us or third parties to stop contacting you for marketing purposes at any time by following the opt-out links on any marketing message sent to you or by contacting us at any time.
Where you opt out of receiving these marketing messages, this will not apply to personal data provided to us as a result of a product/service purchase, warranty registration, product/service experience or other transactions.
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
Details of retention periods for different aspects of your personal data are available in our retention policy which you can request from us by contacting us.
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.
We use the following cookies:
You block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
Please note we do not store credit card details. This information is passed directly to our payment service provider (Recurly - https://recurly.com/) over an encrypted link and is never stored on our system. Stripe (www.stripe.com) processes payments on our behalf. Both providers are PCI compliant.
We may have to share your personal data with the parties set out below:
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
Some of our external third parties are based outside the United Kingdom (UK) so their processing of your personal data will involve a transfer of data outside the UK. By using our service, you consent to such transfer, subject to us complying with our obligations below.
Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
A full list of our third parties with which we may share your data can be found here: https://docs.google.com/spreadsheets/d/1Dwn4PFbpwdXur4iSoiO0j5P4wkUF1Wds50KfjF4mtSc/edit?usp=sharing
Finally, we reserve the right to the extent permissible by applicable Data Protection Legislation, to cooperate with law enforcement officials in the investigation of alleged unlawful activities of HandsHQ website users or relating to HandsHQ users. We will have no legal liability for such disclosures of your information.
You have the right to:
If you wish to exercise any of the rights set out above, please contact us.
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
You can find detailed information about your rights under UK Data Protection legislation on the UK Information Commissioner's website at www.ico.gov.uk.
We may edit this policy from time to time. Please check this policy regularly for any changes. We will post all changes here, and if we make any substantial changes we may also notify you by email.