Conrad Energy Limited (“we”, “us” and “our”) is a private limited company registered in England and Wales at Suites D&E Windrush Court, Blacklands Way, Abingdon, OX14 1SY (Registration no. 09866059).
We are a “data controller” for the purposes of the General Data Protection Regulation 2016/679 (“GDPR”), this means we determine the “how” and the “why” of the processing of your Personal Data.We are committed to protecting your privacy and processing your personal data fairly and lawfully in compliance with the GDPR.
Fair and lawful processing
We will only process your Personal Data,where:
- you have given your consent to such processing (which you may withdraw at any time, as detailed at clause 9 below);
- the processing is necessary to provide our services to you under a contract we may have with you or your employer, or through this website;
- the processing is necessary for compliance with our legal obligations; and/or
- the processing is necessary for our legitimate interests or those of any third party recipients that receive your personal data (as detailed in clauses 5 and 7 below). By “processing”, we mean the collection, recording, storage, use, disclosure and any other form of operations or dealings with your Personal Data.
What personal data we collect about you
We typically process the following types of Personal Data about you:
- Your name, email address and other contact details (either personal or business, as may be necessary);
- Your role, position and/or job title within your employer;
- Your area of employment (e.g. marketing, sales, procurement);
- Details of your preferences for types of marketing events or activity; and
- Details of your visits to our premises.
- Dash cam recordings in our vehicles
- CCTV images when you are on our premises.
In certain circumstances it will be necessary for you to provide us with your Personal Data, to enable us to manage our operations, to provide services to you or your or to comply with our statutory obligations. In other circumstances, it will be at your discretion whether you provide us with Personal Data or not. However, failure to supply any of the Personal Data we request may mean that we are unable to maintain or provide services or products to you or your employer, or otherwise fulfil a contract we may have in place with you or your employer.
We make every effort to maintain the accuracy and completeness of your Personal Data which we store and to ensure your Personal Data is up to date. However, you can assist us with this considerably by promptly contacting us if there are any changes to your Personal Data or if you become aware that we have inaccurate Personal Data relating to you (see clause 9 below). We will not be responsible for any losses arising from any inaccurate, inauthentic, deficient or incomplete Personal Data that you provide to us.
How we Collect Personal Data
We usually collect your Personal Data from the information you submit during the course of your, or your employer’s, relationship with us. This will typically be through you sending us emails and other correspondence, business cards, the forms and documents used when you sign up to our marketing, when you are named as an authorised person to trade on behalf of your employer, or the sign up information you use to access any of our products or services either on your own behalf or on behalf of your employer. We also collect any Personal Data you directly provide to us using the “Contact Us” section of this website. We also record images from the dash cams installed in our vehicles when they are in use. We also record CCTV images on our premises.
How we Use Personal Data
We will process your Personal Data in connection with the management of our relationship with you for the following purposes:
- for monitoring and assessing compliance with our policies and standards;
- for promotional and marketing materials and activities, including photos and videos;
- to carry out money laundering, financial and credit checks and for fraud and crime prevention and detection purposes;
- to provide you or your employer with requested products or services, or to otherwise fulfil our obligations under any contract we may have with your or your employer;
- to identify persons authorised to trade on behalf of our Customers, Suppliers and/or Service Providers;
- for administrative purposes in relation to the security and access of our systems, premises, platforms and secured websites and applications;
- to contact you about the services and products we offer (where we have received your consent to do so, or we believe that you may be interested in the material as it relates to similar products or services you have previously acquired, or indicated your interest in acquiring, from us);
- to comply with our legal and regulatory obligations and requests anywhere in the world, including reporting to and/or being audited by national and international regulatory bodies;
- to comply with court orders and exercise and/or defend our legal rights;
- for any other legitimate business purpose; and
- as otherwise permitted or required by any applicable law or regulation.
- for recording and monitoring any incidents involving our vehicles
- for investigating any claims related to incidents with our vehicles
- for recording and monitoring the locations of our vehicles for the purpose of managing business operations
- for recording and monitoring security of our premises and personnel
- for recording and monitoring health and safety incidents on our premises
International Transfers of Personal Data
The Personal Data we collect from you may be transferred to (including accessed in or stored in) a country or territory outside the European Economic Area (“EEA”), including to countries whose laws may not offer the same level of protection of Personal Data as are enjoyed within the EEA. We will ensure that any such international transfers are made subject to appropriate or suitable safeguards as required by the GDPR.
When we may disclose your personal data
We do not and will not sell, rent out or trade your Personal Data. We will only disclose your Personal Data in the ways set out in this notice and, in particular, to the following recipients:
- to any group company of Conrad Energy Limited;
- to third parties who process your Personal Data on our behalf (such as our systems providers including cloud providers);
- to third parties who process your Personal Data on their own behalf but through providing us or your employer with a service on our behalf (such as our suppliers);
- to legal advisors, security services and companies providing services for money laundering checks, credit risk reduction and other fraud and crime prevention purposes and companies providing similar services, including financial institutions, credit reference agencies and regulatory bodies with whom such information is shared;
- to any third party to whom we assign or novate any of our rights or obligations;
- to any prospective buyer in the event we sell any part of our business or assets; and/or
- to any government, regulatory agency, enforcement or exchange body or court where we are required to do so by applicable law or regulation or at their request.
- to our insurers where one of our vehicles is involved in accident involving you
How we protect your personal data
We are committed to safeguarding and protecting Personal Data and will implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to protect any Personal Data provided to us from accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to Personal Data transmitted, stored or otherwise processed.
Your rights in relation to the personal data we collect
If you wish to:
- update, modify, delete or obtain a copy of the Personal Data that we hold on you; or
- restrict or stop us from using any of the Personal Data which we hold on you, including by withdrawing any consent you have previously given to the processing of such data;
you can request this by emailing us at the address set out in clause 12 below. We endeavour to respond to such requests within a month or less, although we reserve the right to extend this period for complex requests.
- In any of the situations listed above, we may request that you prove your identity by providing us with a copy of a valid means of identification in order for us to comply with our security obligations and to prevent unauthorised disclosure of data.
- We reserve the right to charge you a reasonable administrative fee for any manifestly unfounded or excessive requests concerning your access to your Personal Data, and for any additional copies of the Personal Data you request from us.
How long we will hold your PERSONAL data for
We will only retain your Personal Data for as long as necessary to fulfill the purpose for which it was collected or to comply with legal, regulatory or internal policy requirements.
How you can contact us
Post: Office Manager, Conrad Energy Limited, Suites D&E Windrush Court, Blacklands Way, Abingdon, OX14 1SY
How to lodge a complaint to the regulator
You are entitled to lodge a complaint with our data protection regulator if you consider that we have breached your data protection rights. Our data protection regulator is the Information Commissioner’s Office, which can be contacted at Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.