Last updated: January 2024
Richmond Frames & Glass is committed to protecting your personal data and respecting your privacy. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page explains how we handle your data in accordance with these regulations.
Richmond Frames & Glass is the data controller responsible for your personal data. Our contact details are:
Richmond Frames & Glass
47 Bridge Street
Richmond, Surrey TW9 1TQ
Email: [email protected]
We only process your personal data when we have a lawful basis to do so. The lawful bases we rely on include:
Where you have given clear consent for us to process your personal data for a specific purpose. You may withdraw consent at any time by contacting us.
Where processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.
Where processing is necessary for us to comply with the law.
Where processing is necessary for our legitimate interests or the legitimate interests of a third party, provided your interests and fundamental rights do not override those interests.
Under the UK GDPR, you have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you. This is known as a Subject Access Request (SAR). We will respond to your request within one month.
You have the right to request that we correct any inaccurate personal data we hold about you, or complete any incomplete data.
You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purpose it was collected, or you withdraw consent.
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
You have the right to object to processing based on legitimate interests or direct marketing purposes.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you. We do not currently use automated decision-making.
To exercise any of these rights, please contact us using the details above. We will respond to your request within one month. In certain circumstances, we may extend this period by two months if your request is complex or we receive multiple requests. We will inform you of any extension within one month of receiving your request.
We may ask you to verify your identity before processing your request. There is usually no fee for exercising your rights, but we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.
We have implemented appropriate technical and organisational measures to protect your personal data against unauthorised or unlawful processing, accidental loss, destruction, or damage. These measures include:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
We do not routinely transfer your personal data outside the United Kingdom. If we need to transfer your data internationally, we will ensure appropriate safeguards are in place in accordance with UK GDPR requirements.
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Website: ico.org.uk
We would appreciate the opportunity to address your concerns before you approach the ICO, so please contact us first.
We may update this GDPR compliance information from time to time. Any changes will be posted on this page with an updated revision date.