For some of the services which we offer, we may require information from you. We may collect your personal information from a variety of sources, including information we collect from you directly e.g. when you contact us and provide services to us and information we collect about you from other sources, including commercially available sources, such as public databases (where permitted by law).
Certain personal information is required as a consequence of any contractual relationship we have with you to enable us to carry out our contractual obligations.
Under the EU’s General Data Protection Regulation Personal Data is defined as follows:
Any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
The categories of information that we may collect on you includes the following:
The examples provided are not all inclusive and Tomkins also may collect similar or related information.
Tomkins will process – that means collect, store and use – the information you provide in a manner that is compatible with the EU’s General Data Protection Regulation (GDPR). We will endeavour to keep your information accurate and up to date and not keep it for longer than is necessary. In some instances, the law sets the length of time information has to be kept, but in most cases, Tomkins will use its discretion to ensure that we do not keep records outside of our normal business requirements.
Unless it is necessary for a reason allowable in the GDPR, Tomkins will always obtain explicit consent from a data subject to collect and process their data. Transparent information about our usage of their personal data will be provided to data subjects at the time that consent is obtained and their rights with regard to their data explained, such as the right to withdraw consent.
2. Performance of a Contract
Where the personal data collected and processed are required to fulfil a contract with the data subject, explicit consent is not required. This will often be the case where the contract cannot be completed without the personal data in question e.g. a delivery cannot be made without an address to deliver to.
3. Legal Obligation
If the personal data is required to be collected and processed in order to comply with the law, then explicit consent is not required. This may be the case for some data related to employment and revenue.
4. Vital Interests of the Data Subject
In a case where the personal data are required to protect the vital interests of the data subject or of another natural person, then this may be used as the lawful basis of the processing. Tomkins will retain reasonable, documented evidence that this is the case, whenever this reason is used as the lawful basis of the processing of personal data.
5. Task Carried Out in the Public Interest
Where Tomkins needs to perform a task that it believes is in the public interest or as part of an official duty then the data subject’s consent will not be requested. The assessment of the public interest or official duty will be documented and made available as evidence where required.
6. Legitimate Interests
If the processing of specific personal data is in the legitimate interests of Tomkins and is judged not to affect the rights and freedoms of the data subject in a significant way, then this may be defined as the lawful reason for the processing.
You have the right to be given a copy of information held by us about you. We will provide the requested information to you within 30 calendar days of the receipt of a valid request in writing or by email. Applications must be sent with proof of identity such as a passport copy or driving license.
You have the right to have any inaccuracies in the information held by us about you corrected, if inaccurate, or erased if we do not have a legitimate reason for retaining that information.
We will accede to any such valid requests within 30 calendar days of the receipt of a valid request by email to: email@example.com.
We reserve the right to request you to provide additional information in order to enable us to identify your personal data and/or to verify your identity.
Tomkins are committed to protecting the security of your personal information. We follow best practice guidelines to help protect your information from unauthorised access, use or disclosure. Information is stored on computers with limited access that are located in controlled facilities.
This legal notice and all issues regarding this website are governed exclusively by Irish law and are subject to the exclusive jurisdiction of the Irish courts.
If you have any questions regarding the above statement please contact us at: firstname.lastname@example.org.