As part of running our business, Prime World Property Ltd sometimes needs to collect, maintain and use personal data about you. That will normally be if you are a current, past or prospective customer or an individual that’s contacted us and needs a response.
The legal basis that we have to process your data falls into three categories:
Firstly, if you have a contract with us – for example if you are an existing customer.
Secondly, if you’ve provided consent – for example, if you’ve consented to receive a newsletter from us.
Thirdly, if we have a legitimate reason – for example, you have asked us for more details on a property and we have entered you into our CRM system to manage the sales process.
Any personal information you give us, either on this website (for example, via a contact form), via email or direct mail, phone contact or direct contact in person will never be sold, rented or made public without your consent.
We take your privacy seriously. We’ll only use your information to administer your account or provide the products, services and/or information you’ve asked for. Sometimes, to do that we might need to pass information on to a third party (for example your email into a newsletter sending system). When we do, we’ll use safe, reliable, GDPR compliant services who won’t pass your personal details anywhere else. You can see who we use by looking at the ‘third party data processors’ below.
Information we collect:
1. Site visits tracking
We collect visitor behaviour on our website. This tells us which pages are visited, the sorts of searches that are used to find us what people do on the site when they are there. It doesn’t tell us anything personal about the people visiting the site, just what they do.
2. Contact by form, email link and telephone
If you email us, either using a website contact form or by sending a direct email, we’ll get that information in an email. That data isn’t stored on our website.
If you phone us and we need to store your details for any of the legal bases explained we’ll store it safely on company computers that are regularly maintained, safely kept (in alarmed premises where possible). We might also add your information to our CRM if it is right for processing your reason for contact.
We may keep a record of contacts (such as emails that have been sent and received), but again we won’t use the details for anything other than the relevant legal reasons stated.
On occasion, we’ll send marketing and information emails. We’ll only send these emails if you fall into one of the two following categories:
If you’ve asked to get our marketing, you may opt out any time. There’ll be an unsubscribe link in each newsletter or you can contact us (see below).
Under 16? Legally you must obtain parental consent before joining email newsletters.
What we do with that information
Where appropriate, we’ll use the information we keep about you to:
Access to your information and correction
You have a number of rights including the right to request a copy of the information that is held about you. If you’d like to know what information is held, please email us and we'll reply to you by email. Legally that’s within one working month, but we’ll aim to reply as soon as we can.
We want to make sure that your personal information is accurate and up to date. So once you have any information, you can ask us to correct or remove anything you think is wrong. For a full list of your rights, have a look at the ICO Website.
We’ll normally be happy to help at no charge, however where requests are manifestly unfounded, excessive, or repetitive after an initial, responded to, request, we’ll potentially charge an admin fee to cover the time taken to fulfil the request. This fee will be charged at our standard hourly rate.
Third Party Processors
We use a number of third parties to process personal data for us. These third parties have been carefully chosen and, to the best of our knowledge, all of them comply with current legislation where applicable for their country. We may need to share your information with them in order to process products or services. This may be within the UK or outside including the United States and countries outside of Europe.
This website is hosted on a server owned by GoDaddy. The server is kept up to date and has round the clock monitoring. To see GoDaddy’s Privacy Policies click here.
We run company emails through Gmail as part of Google Apps for business. Therefore, our emails sent both to and from us are stored on Google’s secure mail servers.
To see Google’s privacy and terms click here.
We use SquareUp to process transactions. When customers pay via SquareUp they do so directly with SquareUp. To see SquareUp’s policies, click here.
We will report any unlawful data breaches of data held by us to the ICO as required (https://ico.org.uk/for-organisations/report-a-breach/personal-data-breach/) within 72 hours of becoming aware of a breach taking place if it is apparent that personal data stored in an identifiable manner has been stolen.
All traffic (transferral of files) between this website and your web browser is encrypted and delivered over HTTPS.
As a small organisation, we don’t need to have an official Data Protection Officer. However, that role is voluntarily taken on by Jane Smith. If you would like to speak with Jane, please contact the office by phone on any of the above numbers. Alternatively, please email us to make an enquiry specifically relating to data protection, the GDPR and you.