General Privacy Policy
Introduction
The Bionic Group
Established in 2002, The Bionic Group are a leading specialist in the provision of multimedia solutions to the construction industry, offering its clients a wide range of new media services.
Built upon a team of 3D modelling, animation and multimedia specialists, with an in-depth construction knowledge, we will ensure your requirements are fully understood to make certain that the multimedia selection is the ideal solution for your 4D construction phasing animation, presentation, video, Interactive DVD or tablet App.
Today The Bionic Group works on projects in the UK and has an international client portfolio which includes Europe, Middle East, Hong Kong and Australia. Its business is built on referral. Every project, small or large, means as much to us as it does to you.
“At Bionic, we are committed to maintaining the trust and confidence of visitors to our web site.
We believe in safeguarding all personal data and protecting the privacy of all website users, clients and visitors.
In this Privacy Policy, we’ve provided lots of detailed information on when and why we collect your personal information, how we use it, the limited conditions under which we may disclose it to others and how we keep it secure.”
What is the purpose of this policy?
This Privacy policy ensure that The Bionic Group
- Complies the General Data Protection Regulation “GDPR” and any associated UK law
- Protects the rights of staff, customers and partners
- Is open about how it stores and processes personal data
- Protects stored data against the risk of data breach
Personal data is defined in the GDPR as - Any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier.
This definition provides for a wide range of personal identifiers to constitute personal data, including name, identification number, location data or online identifier, reflecting changes in technology and the way organisations collect information about people.
Types of data we collect
The Bionic Group may collect the following information about you:
- your name, Job title, Place of work;
- your contact details: postal address including billing and delivery addresses, telephone numbers (including mobile numbers) and e-mail address;
- Project information, purchases and orders made by you;
- your on-line browsing activities on The Bionic Group Website;
- payment information;
- your communication and marketing preferences;
- your industry, feedback and survey responses;
- your location;
- your correspondence and communications with The Bionic Group
- Other publicly available personal data, including any which you have shared via a public platform (such as a Twitter feed or public Facebook page).
The Bionic Group Website
Cookies – what they are, why you are collecting them, what information cookies store.
Mailing Lists
As part of the registration process for our monthly e-newsletter, we collect personal information.
We only use that information to;
- To tell you about products or services you’ve asked us to tell you about
- To contact you if we need to obtain or provide additional information;
- We may also contact you to check our records are right and to check every now and then that you’re happy and satisfied to remain on the mailing list. We don't rent or trade email lists with other organisations and businesses.
We also use a marketing platform provider, MailChimp, to deliver our newsletter.
We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our e-newsletter. For more information, please see MailChimp’s privacy notice.
You can unsubscribe to general mailings at any time of the day or night by clicking the unsubscribe link at the bottom of any of our emails or by emailing The Bionic Group at info@thebionicgroup.com
Personal information access requests
You are entitled to view and amend any personal data we hold and also request that we delete all personal information if requested
Examples of requests;
- Ask what information we hold about you and why
- How we gain access to the information
- Be informed how we keep the information up to date
- Be informed how the company meets its data protection obligations
- If the data we hold on you is out of date, incomplete or incorrect, you can inform us and your data will be updated.
- You have the right to request that we transfer some of your data to another controller.
- The right to lodge a complaint with the Information Commissioner’s Office.
Information requests can be emailed to info@thebionicgroup.com
Requests will be handled within 30 days and we will always verify the identity of anyone making a request for personal information.
Disclosing data for any other reason
In certain circumstances the GDPR allows person data to be disclosed to law enforcement agencies without the consent of the individual
Under these circumstances The Bionic Group will disclose requested data. However, the company will ensure that the request is legitimate, seeking assistance from the company’s legal advisors where necessary.
Transfer of Data Abroad
Any electronic personal data transferred to countries or territories outside the EU will only be placed on systems complying with measures giving equivalent protection of personal rights either through international agreements or contracts approved by the European Union. Our website is also accessible from overseas so on occasion some personal data (for example in a newsletter) may be accessed from overseas.
Data processing
We use your personal data for some or all of the following purposes:
- To enable us to meet all legal and statutory obligations
- To administer the Business,
- To maintain our own accounts and records;
- To seek your views or comments;
- To notify you of changes to our services, products and events
- To send you communications which you have requested and that may be of interest to you. This may include information about existing and new products and services
- To process a grant or application for a role;
- The recruitment and payment of staff.
- External accreditation. (research grants)
- Complying with legal obligations to funding bodies and government including local government.
The legal basis for processing your personal data?
Most of our data is processed following the reasons outlined below
- Consent
- Performance of a contract to which the data subject is party, or to take steps prior to entering into a contract at the request of the data subject
- Protection of the vital interests of the data subject or another natural person
- Performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
- Legitimate interests pursued by the controller or a third party
There are however times when processing is necessary for compliance with a legal obligation. For example, we have received a legal request from law enforcement
How long do we keep your personal data?
We will keep some records permanently if we are legally required to do so. We may keep some other records for an extended period of time.
For example, it is current best practice to keep financial records for a minimum period of 7 years to support HMRC audits. In general, we will endeavour to keep data only for as long as we need it. This means that we may delete it when it is no longer needed.
Data Security
We take protecting your personal data very seriously and have provided an outline of the methods we use to ensure it remains secured
- Prevent unauthorised persons from gaining access to data processing systems in which Personal Data are processed.
- Prevent persons entitled to use a data processing system from accessing Personal Data beyond their needs and authorisations.
- Ensure that Personal Data in the course of electronic transmission during transport cannot be read, copied, modified or removed without authorisation.
- Ensure that access logs are in place to establish whether, and by whom, the Personal Data was entered into, modified on or removed from out systems
- Ensure that in the case where Processing is carried out, the data can be Processed only in accordance with the polices outlined in this document
- Ensure that Personal Data is protected against undesired destruction or loss.
- Ensure that Personal Data collected for different purposes can and is processed separately.
- Ensure that Personal Data is not kept longer than necessary.
Breach reporting
Any individual who suspects that a Personal Data Breach has occurred due to the theft or exposure of Personal Data must immediately notify info@thebionicgroup.com
The Office of Data Protection must also be contacted and provided a description of what occurred.
Notification of the incident can me made via e-mail, by calling, or by using the anonymous incident reporting form at.
The Office of Data Protection will investigate all reported incidents to confirm whether or not a Personal Data Breach has occurred. If a Personal Data Breach is confirmed, the Office of Data Protection will follow the relevant authorised procedure based on the criticality and quantity of the Personal Data involved.
All data breaches must be reported to the information commissioner’s office within 72 hours
Policy Maintenance
Please contact us if you have any questions about this Privacy Notice or the information we hold about you or to exercise all relevant rights, queries or complaints at: info@thebionicgroup.com
Publication
This policy shall be available to all Bionic Group Employees and on the Bionic Group website or via alternative means as deemed appropriate.
Review
This policy will be subject to review every 12 months and updated as necessary to reflect best practice or future amendments made to the General Data Protection Regulation (GDPR) May 2018 and Data Protection Act 1998.
Next review date: May 2019