NetThreat Privacy Policy Statement

This Privacy Statement was published on 25th May 2018.

The privacy of your data is important to us.  We encourage you to read the following privacy statement and email us at privacy@netthreat.co.uk if you have any questions.

 

Who are we?

NetThreat are one of the UK’s leading resellers of network security appliances, solutions and services.  Our registered head office is Minerva Mill Innovation Centre, Station Road, Alcester, Warwickshire, B49 5ET.  NetThreat Ltd is recognised as the Data Controller. 

This privacy policy applies to NetThreat Ltd and our group of companies and websites including but not limited to:

netthreat.co.uk

sonicwallonline.co.uk

watchguardonline.co.uk

 

What is personal data?

Personal data includes your name, telephone number, title (marital status), email address, position in the company, company name, and address.

We may also collect feedback, comments and questions received from you in service-related communication and activities, such as meetings, phone calls, documents, and emails.

From our websites we may collect your IP-address and map your journey through our sites.

 

Special categories of personal data

This includes information about your religion, race, genetic and biometric information.  NetThreat do not collect or process any special categories of personal data.

 

When do we collect personal data about you?

  1. When you enquire about or purchase our products and service
  2. When you interact with us in person, by written or electronic correspondence, phone, or through our websites (listed above)
  3. We may also collect personal information from other legitimate sources, such as third-party data providers*, public sources and public social networks

*Only if they have received your consent to share your personal data with us.

If we do want to collect personally identifiable information through our website, we will be up front with you about this.  For example, asking for your email address when you use our online chat facility.

 

Why do we collect and use personal data?

We collect and use your personal data to perform direct sales processes, administer enquiries including quotations, direct marketing and customer service functions. We also collect personal data about our suppliers, partners, and resellers.

 

We may use your information to:

  1. Send you information about the products and services that you have purchased from us
  2. Perform direct sales activities
  3. Provide you with content and follow up details on a webinar or event organised by us that you signed up for
  4. Reply to a ‘contact me’, ‘online chat’ or other web form you have completed via any of our websites
  5. Follow up on incoming requests (customer support, emails, online chats, or phone calls)
  6. Provide you with access and services related to a trial of a product or service
  7. Provide you with access to our customer or reseller or support portals via any of our websites
  8. Perform contractual obligations such as your order confirmation, license and renewal details, invoice, reminders, and similar
  9. Contact you to conduct surveys about your opinion on our products and services
  10. Send you marketing communications that you may have requested. These may include information about our products and services, events, activities, and promotions from our vendors.  These communications may in some circumstances require your consent
  11. Send you marketing communications where a basis of legitimate interest has been established.  You can request that we delete your details at any time
  12. Process a job application, partner or reseller application

 

Data minimisation

As a data controller we will

  • Only collect data that is required for processing.  If data is not required for processing, we will not collect it
  • Only carry out processing that is necessary and on a necessary schedule to complete our obligations under contract or to perform a function such as a quotation or estimate
  • Ensure data is only stored for the required amount of time and there is a process to securely dispose of all copies at the right time
  • Ensure data is not shared with third parties, suppliers, cloud providers unless necessary and agreed by consent, under contract, or the basis of legitimate interest exists

 

Live Chat

We use a live chat facility on some of our websites provided by a third party called LiveAgent.  We may ask you to provide your name and email address before you chat with our agents on line and we will provide a clear data privacy statement at this time. 

You can view LiveAgent’s GDPR Compliance policy here.

 

Collection and processing of information.

We will only collect the basic information we need to carry out the above functions.  We will collect information and process it on one or more of the following lawful conditions:

  1. Consent
  2. Contract
  3. Legitimate interest

 

Consent

We may collect and process personal data based on your express consent.  Evidence of your consent will be stored securely.   

 

Contract

We may collect and process personal data to fulfil our obligations under contracts and agreements with you, our customers, partners, resellers and suppliers.

 

Legitimate interest

We may collect and process personal data if it is considered to be of legitimate interest to us or you and only if your privacy rights do not override this interest. Normally, to establish legitimate interest, an assessment will have been made during which a mutual interest has been identified between you and ourselves.  

 

Social media and community sites

If you upload content to any social media platforms such as our LinkedIn pages, the information can be read by anyone with access, and used for purposes over which we or you have no control.  Therefore, NetThreat will not be responsible for any information or the subsequent consequences of any information you submit.

 

How long do we keep your personal data?

We will store your personal data:

  1. For as long as is necessary to fulfil the purpose for which it was originally collected
  2. To comply with relevant legal requirements

We will retain your data for a reasonable period following the completion of the purpose for which it had been originally collected.  This is because we consider your need to raise future queries and possible issues relating to previous orders and enquiries.

 

Timescale guidelines: 

  • Up to 6 years following your purchase of an appliance (this is so that we can let you know important information about your device, updates to firmware, service agreements etc.)
  • Up to 2 years following you choosing to set up an online account with us (this is so that we can let you know about products and services that are relevant)
  • Up to 1 year following you making an enquiry with us about a product or service

After a period of reasonableness we will delete your personal data or anonymise it for statistical purposes.  Anonymising irreversibly destroys any way of identifying you.  

 

Your rights to your personal data

You have the following rights:

  1. The right to request a copy of all the personal data we hold about you
  2. The right to request corrections if the data we hold about you is incorrect or out of date
  3. The right to request your personal data be deleted when it is no longer necessary for us to retain it
  4. The right to withdraw your consent to personal data processing at any time. For example, your consent to receive e-marketing communications
  5. The right to request a restriction on further processing of your data in case of inaccuracies or objections to methods of processing

 

Online accounts or portals

If you have an account on our website portals you may update your user profile at any time. If you have not purchased through your online account for a period of 6 years we will remove your data and delete your account in accordance with GDPR regulations.

You can of course set up a new account with us at any time, although we will be unable to reinstate a previous account.

 

NetThreat Knowledge

If you are on our ‘NetThreat Knowledge’ marketing list you are eligible to receive occasional and personally selected offers, discount deals, industry news, webinars and other information that we refer to as ‘NetThreat Knowledge’.  We promise no spam and aim to provide relevant informative content at all times. You can unsubscribe from ‘NetThreat Knowledge’ at any time by clicking the unsubscribe link at the bottom of any NetThreat Knowledge email or by contacting us at privacy@netthreat.co.uk.

If you choose to opt out we will retain your given email address on a ‘suppression list’ to ensure we have recorded that you no longer wish to hear from us.  You can opt back in to NetThreat Knowledge at any time by contacting us at privacy@netthreat.co.uk .

 

Service updates about your product and solution

At NetThreat we are passionate about network security so you don’t have to be.  Part of our professional commitment to you is to periodically let you know about essential changes/updates/upgrades to the products or services you have purchased.  This may include but is not limited to renewal notices, hardware/firmware updates and information about the end of support/life for your appliance.

If you decide that you do not wish to receive this essential information we will be unable to accept any liability for any losses or consequences incurred that may ultimately expose your network and/or impact the effectiveness of your appliance.

Please contact us at privacy@netthreat.co.uk if you would like to discuss how and when you receive service updates.

 

Google Analytics

We use a third party service, Google Analytics, to collect standard internet log information and details of our visitor’s behaviour patterns. For example the number of visitors to various parts of the site. This information is processed in a way that will not identify anyone.

We do not make, and do not allow Google to make, any attempt to find out the identities of visitors to our website. You can find more information on how cookies are used in the Cookie Policy below.

 

Cookie Policy

We use cookies on all our websites to collect information about the pages and links you have visited.

We use this information to help make our websites more usable for our visitors.  Cookies collect information from our visitors such as which pages you viewed and links you clicked as well as your computer IP address.

This information can help us to understand your browsing history that in turn means you enjoy a better quality and more relevant experience.  Cookies also help us to detect and prevent security threats and abuse.

 

External links

Although we take every effort to ensure the accuracy and providence of links from our site to any third party sites or landing pages we cannot be held responsible for any malicious content.

 

Data sharing

We will not share, sell, rent, or trade your information to any Third Parties.

Data minimisation policy

As a data controller we will:

  • Only collect data that is required for processing.  If data is not required for processing, we will not collect it
  • Only carry out processing that is necessary and on a necessary schedule to complete our obligations under contract or to perform a function such as a quotation or estimate
  • Ensure data is only stored for the required amount of time and there is a process to securely dispose of all copies at the right time
  • Ensure data is not shared with third parties, suppliers, cloud providers unless necessary and agreed by consent, under contract, or the basis of legitimate interest exists

 

Third Parties - Data Processing

As data controllers we may use third parties to process your data on our behalf. Where this is the case we have a Data Processing Agreement in place with Third Party processors who work to process data only with our explicit consent.

Our Third Party providers include but are not limited to our vendors and distributors such as Exertis, Nuvias, Sonicwall and WatchGuard.   Our list of our vendors can be found by going to our products page http://www.netthreat.co.uk/products/

We use a third party provider, Mailchimp to deliver our marketing updates. We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our email marketing.  For more information, please see MailChimp’s privacy notice.

In addition we may also use marketing platforms such as Eventbrite and WebEx etc. to help manage our webinars and other events. Their privacy statements are available via their websites.

Third Party privacy statements

We hold a copy of the privacy statement for each of our third party processors or platforms.

 

Sub-Contractors

Where we employ sub-contractors we are responsible for ensuring they commit themselves to adhere to our Privacy Policy and applicable data protection legislation by signing a Data Processing Agreement and a Non-Disclosure Agreement if applicable.

 

Finance Partner

NetThreat partner with Satellite Finance to offer our customers the option of spreading appliance costs over monthly instalments.  When you enter into a finance agreement with Satellite you are responsible for dealing with them directly although we may pass some of your personal details to them to facilitate the step up of your account and contract with them.  You can obtain a copy of Satellite Finance’s privacy policy from their website at https://www.satellitefinancelimited.com/

 

Outside of the EU

If our Third Party processors or sub-contractor processes personal data outside of the EU, the processing will continue to be in accordance with the General Data Protection Regulations.

 

Legal notice on disclosure of data

If required by law we will disclose your personal information, or if we, as a company, reasonably believe that disclosure is necessary to protect our company’s rights and/or to comply with a judicial proceeding, court order or legal process. However, we will do what we can to ensure that your privacy rights continue to be protected.

 

Subject Access Request

You may request a copy of all the personal data we hold on you and the reasons it is being processed by emailing privacy@netthreat.co.uk or writing to us at NetThreat, Minerva Mill Innovation Centre, Station Road, Alcester, Warwickshire, B49 5ET

There is no cost for this information and we will respond to you within 30 days by the method in which you contacted us where possible.

 

More Information

If you have any questions about GDPR please refer to the Information Commissioner’s Office official regulations guide.  https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/