Privacy Policy

This Policy was last updated on March 25th, 2021.

We consider the right to protection of personal data a fundamental commitment, so we will devote all resources and efforts to process your data in full compliance with the UK Data Protection Act of 2018 and with Regulation (EU) 679/2016 (“GDPR”), as well as any other applicable UK legislation. Since one of the key principles of this legal framework is transparency, we have prepared this document through which we want to inform you on how we collect, use, transfer and protect your personal data when interacting with us through our website.

WHO WE ARE AND HOW YOU CAN CONTACT US

According to the UK Data Protection Act of 2018 and Regulation (EU) 679/2016, DL ADVISORY GROUP LTD is an operator when processing your personal data.

DL ADVISORY GROUP LTD, Company Number 12798338, Incorporated on 07/08/2020, is a consulting company with offices located in London, UK. Please visit our Contact page for more details.

Since our company is also providing services for entities located in EU, we are fully committed in compliance with the EU Regulation 679/2016, according to Article 3.2 – „the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to offering of goods or services…”.

According to Article 27.2(a), given the occasional processing of personal data, it is not mandatory to designate a representative in the European Union.

In compliance with the present EU Regulation 679/2016, after 1st of July 2021, DL ADVISORY GROUP LTD will only transfer personal data based on standard contractual clauses (SCCs), binding corporate rules or a one-off derogation such as informed and explicit consent by the data subject.

The transfer of personal data from UK to EU is considered adequate therefore it does not require special measures.

We are always open to your feedback and willing to provide you with any additional information you may need regarding the processing of your data, so we encourage you to contact our Data Protection Representative (DPR) at the e-mail address dpr@dladvisorygroup.com or by fax, post or courier at the addresses listed in the Contact page.

HOW DO WE USE YOUR INFORMATION?

THE LEGAL BASIS OF DATA COLLECTION AND PROCESSING

The legal basis for collecting personal data is the UK Data Protection Act of 2018 and Article 6 of the EU General Data Protection Regulation 679/2016.

The personal data that we process through our site are mainly your identification, location, and contact details.

We collect and process, with your consent, strictly the information or personal data that is required to be collected and / or processed to meet the purpose for which they were collected, to meet customer requirements and provide the best quality of services.

Our employees who process personal data have explicit personal data protection clauses in the individual employment contract and in the job description.

We expressly state that, in accordance with the Personal Data Processing Regulation, our website does not collect and process data relating to: religious confession or philosophical beliefs, trade union membership, racial or ethnic origin, political opinions, genetic data, biometric data, health data, sexual life or sexual orientation.

WHEN USING OUR WEBSITE

Our website is addressed to people who are at least 18 years old, so we do not willingly process child’s data.

When you visit our website to inquire about our services and to view the information we provide, a number of cookies are used by us (first party cookies) and by others (third parties cookies) in order to allow the site to function, to collect useful information about visitors and to provide you with the best experience in using our site.

Some of the cookies we use are strictly necessary for our site to work. For those cookies that are useful but not strictly necessary, we will always ask for your consent before placing them. More information about cookies will be found in the Cookie Policy.

WHEN YOU SUBMIT A REQUEST THROUGH OUR WEBSITE

When you submit a request through our website contact form or by sending an email, we will ask for your name and e-mail address.

We use this information for responding to your queries, inclusively for providing information about our services, and request your consent for this in accordance with UK Data Protection Act of 2018 and Article 6, paragraph 1 (a) of EU Regulation 679/2016. We can send you an email several times after you have made a request to ensure that we have answered your question and in order to improve your experience as a user. If we want to use your personal data in a way that we have not previously identified, we will contact you to provide you with information about it and, if necessary, to request your consent.

Your request is stored and processed by our employees and we do not use the information you provide to make automated decisions that may affect you. Your information is stored on our website and on our cloud server, both located within the UK or European Union.

HOW WE PROTECT THE SECURITY OF YOUR PERSONAL DATA

We are committed to ensuring the security of personal data by implementing appropriate technical and organizational measures, according to industry standards.

We implement technical and organizational measures to ensure data protection against accidental or unauthorized destruction, loss and processing. We use secure SSL sessions to transfer data between you and us through the website and our security measures are constantly updated to meet the highest standards of data protection.

We keep your personal data on secure servers, ensuring redundancy of storage.

Despite the steps taken to protect your personal data, we would like to draw attention to the fact that the transmission of information via the Internet in general or through other unsecured public networks is not completely secure, with the risk that data may be seen and used by third unauthorized parties. We cannot be responsible for such vulnerabilities of systems that are not under our control.

YOUR RIGHTS AS A DATA SUBJECT

Right of access (UK Data Protection Act 2018 and ART 15 of EU Regulation 679/2016) – you have the right to be informed about everything that happens with your personal data, what it is used for. You have the right to modify it, and even revoke your consent to a specific organization. At the same time, you have the right to access your personal data whenever you want, within reasonable limits.

Right to rectification (UK Data Protection Act 2018 and ART 16 of EU Regulation 679/2016) – The person concerned has the right to obtain from the controller, without undue delay, the rectification of inaccurate personal data relating to him. Taking into account the purposes for which data was processed, the data subject has the right to obtain the completion of personal data that is incomplete, including by providing an additional statement.

Right to be forgotten (right to erasure) (UK Data Protection Act 2018 and ART 17 of EU Regulation 679/2016) – you can obtain data deletion, the general principle being that a person has the right to request the deletion of personal data. This right is not an absolute one, meaning that there are circumstances in which the data will not be erased at the request of the data subject, circumstances deriving from national legislation and which will be documented in the case of a request for deletion of the data.

Right to restriction of processing (UK Data Protection Act 2018 and ART 18 of EU Regulation 679/2016) – a person has the right to restrict the processing of personal data in various circumstances. For example, a person may restrict the processing of personal data when he believes they are not accurate. In this case, the person will be able to restrict data processing until their accuracy is verified. Another case in which data processing may be restricted is when the data subject objects to the processing.

Right to data portability (UK Data Protection Act 2018 and ART 20 of EU Regulation 679/2016) – you may request, under certain conditions, the personal data you have provided us in a format that can be automatically read, or you may request that the data be transmitted to another operator if technically feasible.

Right to object (UK Data Protection Act 2018 and ART 21 of EU Regulation 679/2016) – You can oppose the processing of your personal data.

Right to withdraw consent – in cases where processing is based on your consent, you can withdraw it at any time.

Additional rights related to automated decisions (UK Data Protection Act 2018 and ART 22 of EU Regulation 679/2016) – you can request and obtain human intervention regarding data processing; you can express your point of view.

More information about your rights can be found here:

UK Data Protection Act 2018

https://www.legislation.gov.uk/ukpga/2018/12/contents/enacted

REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

https://eur-lex.europa.eu/eli/reg/2016/679/oj

You can send a request about your personal data by e-mail at dpr@dladvisorygroup.com, fax, post or telephone, using the contact information provided in the Contact page.

If we receive a request from you to exercise any of the above rights, we may ask you to verify your identity before acting on the relevant request; this is to ensure that your data is protected and kept secure.

YOUR RIGHT TO FILE A COMPLAINT

You have the right to file a complaint with the supervisory authority about the processing of your personal data. In UK, the contact information of the data protection supervisory authority is as follows:

Information Commissioners Office (ICO)https://ico.org.uk/global/contact-us/

Phone 0303 123 1113

Without prejudice to your right to contact the supervisory authority at any time, please contact us in advance and we promise that we will make every effort to resolve any issues amicably.

We remind you that you can contact the Data Protection Representative (DPR) at any time at dpr@dladvisorygroup.com.

UPDATES TO THIS CONFIDENTIALITY POLICY

This Privacy Policy will be regularly amended to reflect any changes in the way we process your personal data or any changes to your legal requirements. In the event of any such change, we will display on our website the modified version of the Privacy Policy, so please periodically review its contents.