Last update: October 2022
We take your privacy very seriously. Please read this privacy policy carefully as it contains important information about who we are and how and why we collect, store, use and share your personal information. It also explains your rights in relation to your personal data and how to contact us or the control authorities in the event of a claim.
key terms
Some key terms used in this policy are:
we, we, our | NexantECA Limited and its affiliates |
Personal information | Any information relating to an identified or identifiable natural person |
Special category personal data | Personal data that reveals special categories of personal data, such as racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs, or trade union membership |
Personal information we collect about you
We may collect and use the following personal information about you:
- name and contact details, including email address, job title, phone number and company details
- Information that allows us to check and verify your identity, such as your date of birth
- information about your gender if you choose to provide it to us
- billing information, transactions and payment card information
- Your professional online presence, such as your LinkedIn profile
- Your contact history and purchase history
- information that allows us to perform credit or other financial checks on you
- Information about how you use our website, IT, communication and other systems
This personal information is necessary to deliver products and/or services. Failure to provide the personal information we request may delay or prevent us from providing products and/or services to you.
How your personal information is collected
We collect most of this personal information directly from you, in person, by phone, text or email, and/or through our website. However, we may also collect information:
- from publicly available sources such as Companies House or HM Land Registry;
- directly from a third party, for example, sanctions monitoring service providers; customer due diligence service provider
- from third parties with your consent
- of cookies on our site; You can find more information about the use of cookies in our cookie policy
How and why we use your personal data
In accordance with applicable data protection laws, we may only use your personal information where we have a legitimate reason to do so, such as:
- to comply with our legal and regulatory obligations;
- to perform our contract with you or to take steps at your request prior to entering into a contract;
- for our legitimate interests or those of a third party; EITHER
- where he consented
A legitimate interest is where we have a business or commercial reason to use your information, unless your own rights and interests override it.
The following table explains why we use (process) your personal data and why we do it:
What we use your personal data for | our reasons |
to ensureproductsI theservicesyou | To perform our contract with you or to take steps at your request before entering into a contract |
To prevent and detect fraud | For our legitimate interests or those of a third party, i.e. to minimize fraud that could be harmful to us and to you |
Carrying out checks to identify our customers and verify their identity Checking financial and other sanctions or embargoes | To comply with our legal and regulatory obligations |
Collect and provide information requested or related to audits, inquiries or investigations by regulatory authorities | To comply with our legal and regulatory obligations |
Ensure compliance with business rules, such as rules related to Internet usage and security. | For our legitimate interests or those of a third party, i.e. to ensure that we follow our internal procedures so that we can provide you with the best service. |
Operational reasons such as performance improvement, training and quality control. | For our legitimate interest or the interest of a third party, that is, to be as efficient as possible so that we can provide you with the best service at the best price |
Guarantee the confidentiality of sensitive business information | For our legitimate interests or those of a third party, i.e. to protect trade secrets and other information of commercial value To comply with our legal and regulatory obligations |
Statistical analysis to help us run our business | For our legitimate interest or the interest of a third party, that is, to be as efficient as possible so that we can provide you with the best service at the best price |
Prevent unauthorized access and modification of systems. | For our legitimate interests or those of a third party, i.e. to prevent and detect criminal activities that may be harmful to us and to you To comply with our legal and regulatory obligations |
Updating of customer records. | To perform our contract with you or to take steps at your request before entering into a contract To comply with our legal and regulatory obligations For our legitimate interests or those of a third party, for example, to ensure that we can keep in touch with our customers about existing orders and new products. |
legal returns | To comply with our legal and regulatory obligations |
Ensure safe work practices, management and evaluation of personnel. | To comply with our legal and regulatory obligations For legitimate interests of our own or of third parties, for example, to ensure that we follow our internal procedures and work efficiently in order to provide you with the best service. |
Marketing our services to: —Current and former clients; — third parties who have previously expressed an interest in our services; —Third parties with whom we have not had prior contact. | For our legitimate interests or those of a third party, i.e. to promote our business to current and former customers |
Credit reference checks through third-party credit reference agencies | For our legitimate interests or those of a third party, i.e. to ensure that our customers can pay for our products and services |
Download subscription reports | In our legitimate interest to verify client downloads of NexantECA underwriting reports |
The table above does not apply to special categories of personal data, which we will only process with your express consent.
promotional messages
We may use your personal information to send you updates (email, text, phone, or post) about our products and/or services.
We have a legitimate interest in processing your personal data for promotional purposes (see above "How and why we use your personal data'). This means that we normally do not need your consent to send you promotional communications. However, if consent is required, we will request it separately and clearly.
We will always treat your personal information with the utmost respect and will never sell it or share it with other organizations for marketing purposes.
You have the right to unsubscribe from receiving promotional communications at any time by:
- Contact us inContact us@NexantECA.com;
- using the "unsubscribe" link in emails;
- update marketing preferences - viewhttps://www.nexanteca.com/lista-de-correo.
We may ask you to confirm or update your marketing preferences if you direct us to provide more products and/or services in the future or if there are changes in laws, regulations or the structure of our business.
With whom we share your personal data
We routinely share personal information:
- companies of the NexantECA group;
- our site administrator, chapter 3;
- external partners, HubSpot, Workable;
- third parties approved by you, for example, social networking sites you link your account with or third party payments; providers;
- credit reference agencies;
- our insurers;
- our banks.
We only allow our service providers to process your personal data if we are satisfied that they have taken appropriate measures to protect your personal data. We also impose contractual obligations on service providers to ensure that they can only use your personal information to provide services to you and to us.
We may disclose and exchange information with law enforcement and regulatory authorities to comply with our legal and regulatory obligations.
We may also need to share certain personal information with other parties, such as potential buyers of part or all of our business or during restructuring. Information is usually anonymized, but this is not always possible. The recipient of the information will be obliged to keep confidentiality.
Where your personal data is stored
Information may be stored at our offices and those of our group companies, third party agencies, service providers, representatives and agents, as described above (see "Who We Share Your Personal Data With").
Some of these third parties may be based outside of the UK. For more information, including how we protect your personal information when this happens, please see below:Transfer of personal data outside the UK”.
How long your personal data will be kept
We will only retain your personal data for as long as it is necessary to fulfill the purposes for which we collected it, including to comply with legal, accounting or reporting requirements.
In determining the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of the personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other applicable legal measures and requirements.
By law, we are required to retain basic information about our customers for six years after they cease to be customers for tax purposes. In some cases, we store customer data until the statutory limitation period for claims expires.
In certain circumstances, we may anonymize your personal information (so that it can no longer be associated with you) for statistical or research purposes, in which case we may use this information indefinitely without notice.
Transfer personal information outside of the UK
We may share your personal information within the NexantECA Group. This involves the transfer of your data outside of the UK.
Many of our external third parties are based outside of the UK, so the processing of your personal data will involve transfer of data outside of the UK.
Whenever we transfer your personal information outside of the UK, we provide you with a similar level of protection by ensuring that at least one of the following security measures is in place:
- We will only transfer your personal data to countries that are deemed to provide an adequate level of personal data protection.
- When we use certain service providers, we may use special contracts approved for use in the UK that give your personal information the same protection as in the UK.
Please contact us if you would like more information about the specific mechanism we use when we transfer your personal data outside of the UK (see "How to contact us' below).
Your rights
You have the following rights, which you can exercise free of charge:
access | Right to receive a copy of your personal data (right of access) | |
rectification | The right to require us to correct any errors in your personal data | |
be forgotten | The right to ask us to delete your personal data - in certain situations | |
limitation of processing | The right to ask us to restrict the processing of your personal data, in certain circumstances, for example if you dispute the accuracy of the data. | |
data portability | The right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format and/or to transmit this data to a third party, in certain situations. | |
To oppose to | Opposition right: —at any time to process your personal data for direct marketing purposes (including profiling); —in some other situations, for the further processing of your personal data by us, for example, the processing is carried out to pursue our legitimate interests. | |
Not be subject to automated individual decisions | Right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects on you or significantly affects you in a similar way |
For more information about each of these rights, including the circumstances in which they apply, please contact us or seeGuidance from the UK Information Commissioner's Office (ICO) on the rights of individuals under the General Data Protection Regulation.
If you wish to exercise any of these rights, please:
- send us an email, call or write us; see "How to contact us" below; AND
- give us enough information to identify you;
- provide us with proof of your identity and address (a copy of your driver's license or passport and a recent utility or credit card bill); AND
- let us know what right you want to exercise and what information your request refers to.
Taking care of the security of your personal data
We have adequate security measures in place to prevent accidental loss, use or illegal access to personal data. We limit access to your personal data to those who have a genuine business need to access it. The people who process your data will only do so in an authorized manner and are subject to the obligation of confidentiality.
We also have procedures to follow in the event of a suspected data breach. We will notify you and the relevant regulatory authorities of a suspected data breach where we are legally required to do so.
For detailed information from Get Safe Online on how to protect your information and your computers and devices from fraud, identity theft, viruses and many other problems online, visitwww.getsafeonline.org. Get Safe Online is backed by the HM government and leading companies.
how to complain
We look forward to resolving any questions or concerns you may have regarding our use of your information.
For your information, the supervisory authority in the UK is the Information Commissioner, who you can contact athttps://ico.org.uk/concernsor phone: +44 (0)303 123 1113.
Changes to this privacy policy
We may change this privacy notice from time to time; when we do so, we will notify you through a notice on our website or by email.
How to contact us
Please contact us by letter, email or phone if you have any questions about this privacy policy or the information we hold about you.
Our contact details are below:
Our contact details |
Address: 110 Cannon Street, London EC4N 6EU Email address:Contact us@NexantECA.com Telephone number: +44 (0)20 7950 1600 |