This privacy notice explains how Premier Benefit Solutions Ltd (‘we/our’) use any personal information we collect about you and your employees. Please read the following carefully to understand our views and practises regarding your personal data and how we will treat it.
Before providing us with any information you are responsible for ensuring that your employees are aware of the data being held by us on your behalf as Data Controller and the reasons for holding that data. “Data Protection Legislation” the EU General Data Protection Regulation 2016/679; together with all other applicable legislation relating to privacy or data protection and where we use the terms “personal data”, “data subject”, “controller”, “processor” and “process” (and its derivatives), such terms shall have the meanings given to them in the Data Protection Legislation.
What information do we collect about your employees and how do we do this?
We could hold both basic and sensitive data about your employees:
We collect information about you and your employees when it is provided to us for the employee benefits consultancy services.
Some of this information is or will have been collected directly from you or your employees (for example, when filling in forms, or when corresponding with us or our representatives by telephone, post, email or otherwise). We may also collect information when you and your employees voluntarily complete client surveys or provide feedback to us.
Information relating to usage of our website is collected using cookies. These are text files placed on your computer to collect standard internet log information and visitor behaviour information. We’ll use any information collected from the website to personalise repeat visits to the site.
We are permitted to process personal information, in compliance with data protection legislation, by relying on one or more of the following lawful grounds:
In relation to any sensitive data, we will generally rely on obtaining specific consent in order to process such information, although it may be necessary for us to use certain information in order to comply with our legal obligations as a regulated entity (such as in relation to an alleged offence).
Where you or your employees have consented to our processing of such information (including sensitive categories of personal data) you or they may withdraw such consent at any time. Please note, however, that in certain circumstances it may be still lawful for us to continue processing this information even where consent has been withdrawn, if one of the other legal bases described above is applicable. Please note that not providing or withdrawing consent could mean that we have insufficient information to provide our services.
We collect information about you and your employees in order to:
In order to deliver our services to you effectively we may send you and your employees details to third parties such as:
We will only keep the information we collect about you and your employees for as long as required for the purposes set out above or as required to comply with any legal obligations to which we are subject. This will involve us regularly reviewing our files to check that information is accurate and up-to-date and still required.
Information about you or your employees in our possession is usually stored inside of the EEA. However, there may be occasions where it may be transferred to other countries (which may include countries outside the European Economic Area) for any of the purposes described in this notice, including our transmission of such information to agents outside the European Economic Area.
If any such information (including special categories of personal data) belongs to relevant individuals other than you, by providing us with such information you confirm that you have obtained any necessary permissions from such persons to the reasonable use of their information for such purposes in accordance with the following provisions, or are otherwise permitted to give us this information on their behalf.
You and they understand and accept that these countries may have differing (and potentially less stringent) laws relating to the degree of confidentiality afforded to the information it holds and that such information can become subject to the laws and disclosure requirements of such countries, including disclosure to governmental bodies, regulatory agencies and private persons, as a result of applicable governmental or regulatory inquiry, court order or other similar process. In addition, a number of countries have agreements with other countries providing for exchange of information for law enforcement, tax and other purposes.
If we, or our permitted third parties, transfer information outside the European Economic Area, we or they will impose contractual obligations on the recipients of that data to protect such information to the standard required in the European Economic Area. We or they may require the recipient to subscribe to international frameworks intended to enable secure data sharing. In the case of transfers by us, we may also transfer your information where:
If we transfer your information outside the European Economic Area in other circumstances (for example because we have to provide such information by law), we will use best endeavours to put in place appropriate safeguards to ensure that your information remains adequately protected.
You and your employees have a number of rights concerning the way that we use your information. You are responsible for ensuring that other relevant individuals are aware of these rights. At any time, such individuals shall have the right:
As stated above, you and other relevant individuals may have a right of access to some, or all, of the information we hold about you or them, or to have any inaccurate information corrected, under the data protection legislation. Any request for access to or a copy of your personal data must be in writing and we will endeavour to respond within a reasonable period and in any event within one month in compliance with data protection legislation. We will comply with our legal obligations as regards any individual’s rights as a data subject.
We aim to ensure that the information we hold about you or other relevant individuals is accurate at all times. To assist us in ensuring that such information is up to date, please let us know if the personal details of you or other relevant individuals change. We will correct any incorrect or incomplete information and will stop processing personal data, or erase it, where there is no legal reason for us to continue to hold or use that information.
We’d like to send you information about our products and services which may be of interest to you. If you have agreed to receive marketing information, you may opt out at a later date. If you no longer wish to be contacted for marketing purposes, please contact us by email or post. We won’t share you and/or your employees’ information for marketing purposes with companies outside our group of companies or other companies.
For further information visit http://www.allaboutcookies.org/
What can you and your employees do if you/they are unhappy with how your/their personal data is processed?
You and your employees also have a right to lodge a complaint with the supervisory authority for data protection. In the UK this is:
Information Commissioner’s Office Wycliffe House Water Lane Wilmslow Cheshire SK9 5AF
0303 123 1113 (local rate)
In writing: To the Compliance Officer at Premier Benefits Solutions Ltd, AMP House, Dingwall Road, Croydon, Surrey, CR0 2LX
By phone: +44 (0) 203 727 9800
By e-mail: email@example.com
We are committed to protecting your personal data.