Effective September 2020
This Privacy Notice sets out the type of information Prometheus Services collects (or is given). It explains how this information is held, how it is used and who we may share it with. If you have any queries regarding your personal information, then there are contact details you can use to get in touch with us. All personal data that is collected (or given to us) will be treated in accordance with the current data protection laws in the EU (GDPR).
Please read the following information carefully to understand how Prometheus Services will use your personal data and your rights in relation to your personal data.
What information do we collect and what information are we supplied with?
When you contact us or fill in the contact form we will create a record in your name. We will add any information you supply to us such as an email address or phone number and any other important information we feel is necessary. Data is collected when any customer registers to use the services supplied by Prometheus Services.
Data is collected by Prometheus Services, the Data Controller. The Data Controller can only view their own data. If you do not wish to receive information about the services from Prometheus Services then we will ask you to make this choice when you contact us or use one of our services.
How do we use your information?
• To process enquiries.
• To provide services to customers that register or book a service with Prometheus Services.
• Personal data is stored in an online admin system that Prometheus Services can use to view customer information.
• To carry out market research to help us plan and improve our services. We may contact you ourselves or ask outside research agencies to do so on our behalf.
• To produce aggregated statistical information.
Who might we share the information with?
We might share information with other companies we work with where we consider this would be necessary or helpful.
Transfer of data outside the EEA
Prometheus Services will only transfer your personal information outside the European Economic Area where necessary safeguards have been secured by contract (this might be unnecessary but many data centres, i.e. the cloud, are not necessarily in the EEA).
How long do we keep data?
Reference to Data Retention Policy. We will publish on our website and application any changes we make to our data protection/information management policies and notify you by other communication channels where appropriate.
Where you exercise your right to removal of your personal data, we will continue to maintain a core set of personal data to ensure we do not contact you inadvertently in future. We may also need to retain some financial records about you for statutory purposes (e.g. anti-fraud and accounting matters). The ‘right to be forgotten’ is a qualified right and the public interest test will always be applied when a request for deletion of personal data is made.
How can I access the information you hold about me?
You are entitled to know what personal information Prometheus Services holds about you and how that information is processed by us. You are entitled to ask for your personal data to be corrected where you believe it is inaccurate. You are entitled to withdraw your consent to the processing of your personal data by Prometheus Services.
However, if the processing is necessary to provide you with the service (or information) you have requested then withdrawal may mean you will not receive that service or information. We will make it clear if this is the case and discuss your concerns directly with you before we stop processing your data.
Please make any requests or complaints to:
The Data Protection Officer
Kemp House, 160