We are Harbour Technologies Limited (company number 14077133) of 22-24 Church Street, Lancaster, England, LA1 1NP (“Harbour”). Registered with the ICO as a data controller with registration reference ZB434906.
We’ll be the “controller” of the information you provide to us.
We at Harbour take the privacy of your personal data seriously. This policy:
We will collect certain personal information about you in the course of your relationship with us. This information may include:
We may collect personal data about you from the following sources:
Under data protection law, we can only use your personal information if we have a lawful reason for doing so. In order to use your personal information, we rely on the following legal bases:
In particular, we use your personal data for the following purposes:
We will not use your information for any other purpose unless we are required to do so by law.
We also collect, use and share “aggregated data” such as statistical or demographic data for any purpose. Aggregated data may be derived from your personal data but is not considered personal data in law providing that it is effectively anonymised and does not directly or indirectly reveal your identity.
How long we keep your information will depend on the purpose for which we use it.
We will keep your personal information while you have an account with us, or we are providing services to you. Thereafter, we will keep your personal information for as long as is necessary:
For example, we are obliged to keep most information relating to the service we provide to you for 6 years after you have stopped using our service. However, we will keep your Financial Information for as short a period as is reasonable after you have stopped using our service. Further details on this are available on request using the contact details set out in the “How you can contact us?” section below.
We may share your personal information with:
As we continue to develop our business, we may sell or purchase assets. If another entity acquires us or merges with us, your personal information will be disclosed to such entity. These third parties will be required to comply with all our obligations under this privacy notice.
Where we need to collect personal information to comply with a legal obligation or in connection with the contract we have with you and you fail to provide that personal information when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with services).
No, we do not carry out automated decision making or automated profiling.
We do not generally transfer personal data out of the UK. Some of our third party service providers may transfer personal data outside of the UK or the EEA but only where our contract with them allows for it and they do so in a way that complies with the UK’s data protection laws.
We have appropriate security measures to prevent personal information from being accidentally lost or used or accessed unlawfully. We limit access to your personal information to those who have a genuine business need to access it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
In addition, we:
Under data protection law, you have the following rights:
We’ll respond as soon as we can. Generally, this will be within one month from when we receive your request but, if the request is going to take longer to deal with, we’ll come back to you and let you know.
We usually act on requests and provide information free of charge, but may charge a reasonable fee to cover our administrative costs of providing the information for:
Alternatively, the law may allow us to refuse to act on the request.
If you have questions on the processing of your personal data, would like to exercise any of your rights, or are unhappy with how we’ve handled your information, please contact us at firstname.lastname@example.org
If you’re not satisfied with our response to any complaint or believe our processing of your information does not comply with data protection law, you can make a complaint to the UK Information Commissioner who may be contacted at ico.org.uk or by telephone on 03031231113.