Seven Group Privacy Policy
Who We Are
The Seven Group in the UK is made up of a number of companies.
Seven Asset Limited
Seven Property Ltd
VII Ltd
Seven Project Ltd
Seven Logistics Ltd
Used Trucks Limited
When dealing with any one of these companies, the ‘controller’ of your personal information will be from the company in our group that you are interacting with or with whom your information has been shared. A ‘controller’ is a company that decides why and how your personal information is processed.
Seven Group – Data Privacy Notice
The following Data Privacy Notice (DPN) explains the circumstances in which Seven Group will collect personal data from you, why it is being collected, how we will use it and to whom we might disclose it to if necessary.
The data controller
Seven Group is committed to complying with the UK’s Data Protection law and the EU General Data Protection Regulation (GDPR) for the protection of personal data, as well as the principles of data security in the configuration of our services. If you have any questions about this privacy notice or how we use your personal data, please contact our Data Protection Administrator:
In Writing:
Seven Group
Cardinal Court
35-37 St Peters Street
Ipswich
Suffolk
IP1 1XF
By Phone: 01473 261777
By Email: dpa@sevengroup.co.uk
What data is being collected and processed?
We will collect, store and use elements of your personal data. The processing of this personal data may be a contractual requirement and therefore necessary for us in order to provide the products and services you have requested from us.
Failure to provide personal data may mean we will be unable to prepare or execute a contract and potentially may result in termination of our services.
We may also monitor, record, store and use any telephone, email or other electronic communications with you for training purposes so that we can check any instructions given to us and to improve the quality of our customer service.
Any personal data we collect from you will not be transferred outside the European Economic Area.
Website Cookies
When you access our website, temporary data about your visit is stored and processed in a protocol file for a certain period of time via the use of cookies. This information is anonymised and is used by us to better understand the use of our site, including the number of visitors we have, the pages viewed per session and time exposed to particular pages. This in turn helps us to provide you with a better experience, since we can evaluate the level of interest in the content of our website and tailor it accordingly.
The following data is collected and stored by Seven Group until its automated deletion:
• IP address of the accessing computer/device
• Date, time and duration of your visit
• Name and URL of the accessed pages
• Identification data of the browser and operating system used
• Website from which the data was accessed
• Name of your internet access provider
The nature and content of the information collected via cookies differs, as does the period for which this information is retained. In line with our data protection obligations, we will ensure that this retention period is not excessive, and that the data is only retained for as long as is necessary for the purpose for which it was collected.
If you wish to know more, or if you wish to identify the exact retention periods, please contact our Data Protection Administrator:
In Writing:
Seven Group
Cardinal Court
35-37 St Peters Street
Ipswich
Suffolk
IP1 1XF
By Phone: 01473 261777
By Email: dpa@sevengroup.co.uk
The data listed above is only analysed for statistical purposes and for improving our internet presence, then it is deleted. We will not attempt to personally identify you from your IP address unless required to as a matter of law or regulation or in order to protect our, or our other customers’ rights.
Most browsers automatically accept cookies but you can set your browser options so that you will not receive cookies and you can also delete any existing cookies from your browser. Should you wish to opt out of Google Analytic tracking across all websites please visit: http://tools.google.com/dlpage/gaoptout. Please note, you may find that some parts of the site will not function properly if you refuse cookies.
Direct Marketing Communications
If you have chosen to opt-in to our direct marketing communications, we will use your information to tell you about products and services available from us which may be of interest to you. We may also use your information to tell you about products and services which we can introduce from selected businesses.
To help make our emails more interesting and relevant, we often receive a confirmation when you open an email from Seven Group if your computer supports such capabilities.
You have a right to opt-out of our direct marketing communications at any time. You can opt-out by following the Unsubscribe instructions at the bottom of the communication or by emailing opt-out@sevengroup.co.uk
Links to websites of other providers third parties
Please note that this data privacy notice only applies to Seven Group and we are not responsible for, and have no control over, information that is submitted to or collected by third parties, such as those where our website may provide links and banner advertisements to third party sites. Since we do not control those websites, you are responsible for reviewing and abiding by the privacy policies of these third party sites to ensure they comply with the applicable data protection regulations.
How long will the data be stored for?
Seven Group will take steps to erase any personal data that is no longer necessary for the purposes for which it is collected or otherwise processed, or if you have withdrawn consent for its processing and retention.
As a general rule, if you enter into or took steps to enter into a contract with Seven Group, we will store the data for period of seven years for compliance with our general legal obligations and for the exercise or defence of any legal claims.
Under the GDPR, you have the right to ‘block’ or request the deletion or removal of personal data to prevent further processing. This right to erasure is also known as ‘the right to be forgotten’. Specific circumstances in which you can request the deletion or removal of personal data includes:
• Where the personal data is no longer necessary for the purposes for which it is collected or otherwise processed
• Where you withdraw consent
• When you object to the processing and there is no overriding legitimate interest for continuing the processing
• Where the personal data was unlawfully processed (i.e. otherwise in breach of the GDPR)
• Where the personal data has to be erased in order to comply with a legal obligation
• In case a deletion is not possible due to legal, statutory or contractual retention periods, or if it requires disproportionate efforts or prejudices your legitimate interests, the data will be blocked instead of deleted.
Sharing of data with other data controllers
Here at Seven Group we respect your privacy and the information we hold about you is confidential. We will only disclose it outside Seven Group when:
• you have given us your consent to do so
• it is necessary for the performance of an agreement of which you will be made aware
• in order to obtain professional advice (e.g. legal advice)
• we or others need to investigate or prevent crime (e.g. to fraud prevention agencies)
• the law permits or requires it
• regulatory or governmental body requests or requires it, even without your consent, or
• there is a duty to the public to reveal the information
In order to administer a contract on your behalf, we may need to share some of your personal information with other data controllers. This processing is necessary for the purposes of delivering specific services to you. You agree that we can share or use your personal data with any of our appointed agents or suppliers to allow us to provide you services and products you have asked us to provide you under this agreement.
Credit reference agencies
In considering your application, we will search your record with credit reference agencies. They will add to your record details of our search and your application and this will be seen by other organisations that make similar searches. On occasion, we may request a credit check with more than one finance provider.
Information held about you by the credit reference agencies may already be linked to records relating to other people with whom you have a financial association. In connection with your application you may be treated as financially linked with them and assessed with reference to any such associated records. Searches may also be made in respect of directors and partners of firms applying for credit.
If you are a joint applicant or if you have told us of some other financial association with another person, or a director of a firm which is applying for a facility you are declaring that you are entitled to:
• disclose information about your joint applicant, fellow directors and anyone else referred to by you
• authorise us to search, link or record information at credit reference agencies about you and anyone else referred to by you
The credit reference agency will use a credit scoring system when assessing your application. They will also add to your record details of your agreement with us, specifically the payments you make under it, any default or failure to keep to its terms and any change of address you fail to tell us about where a repayment is overdue.
These records will be shared with other organisations and will be used by us and them to help make decisions about credit and credit related services such as insurance for you and members of your household, trace debtors, recover debt and to manage your accounts. We and the credit reference agencies will also use the records for statistical analysis about credit.
You have a legal right to know the details of credit reference and fraud prevention agencies we use and to whom we pass information about you. To obtain this information, please contact our Data Protection Administrator on 01473 261777
Fraud Prevention
If you give us false or inaccurate information and fraud (in any form) is identified, details will be passed to the fraud prevention agencies. We and other organisations may also share, access and use this information to prevent fraud and money laundering, for example when:
• checking details on applications for credit and credit related or other facilities
• managing credit and credit related accounts or facilities
• recovering debt
• checking details on proposals and claims for all types of insurance
• checking details of job applicants and employees
In addition, law enforcement agencies may access and use this information.
Protecting your privacy
In order to protect the personal data collected from you by Seven Group against accidental or deliberate manipulation, loss, destruction or the access of unauthorised persons, technical and organisational security measures are constantly improved as part of our technological development. In addition, our employees, subcontractors and other support staff are obligated to observe confidentiality and data privacy.
Any access to your data that is stored at our company only takes place through an encrypted connection. By using the most up-to-date firewall systems, we provide the best possible protection for your data.
Wherever possible, we have tried to create a secure and reliable website for our users. However, you recognise that your use of the Internet and our website is entirely at your own risk and we have no responsibility or liability for the security of personal information transmitted via the Internet.
You must not use the services and/or network systems or any part thereof for fraudulent activities, or to breach another organisation’s security (cross-network hacking). This is an illegal act and prosecution under criminal law may result. You must not use any computers, computer equipment, network resources or any services provided by us for any illegal purpose, or for accessing, receiving or transmitting any material deemed illegal, indecent, offensive or otherwise unacceptable under UK law.
Breaches
If at any time we become aware that your data has been compromised, or that a breach of our systems and controls has occurred, which has an impact on the security of your data, we will notify the Information Commissioner’s Office, and you, without undue delay.
Subject Access Requests
You have the right to request access to a copy of the personal information that we hold about you. This is also known as a ‘Subject Access Request’. This information is provided to you free of charge however, we can refuse to respond or charge a ‘reasonable fee’ of £10 inc. VAT when a request is manifestly unfounded, excessive or repetitive.
If you would like to submit a Subject Access Request, please contact our Data Protection Administrator in writing to:
Data Protection Administrator
Seven Group
Cardinal Court
35-37 St Peters Street
Ipswich
Suffolk
IP1 1XF
Email: dpa@sevengroup.co.uk
We will response to your request without delay and at the latest, within one month of receipt of your request.
Rectifying or updating personal data
If you believe the personal data we hold about you is inaccurate or incomplete, you have the right to rectification. You can let us know about any changes to. Where possible, we will also inform any third parties to whom we have disclosed the personal data in question to so they can rectify their records.
We will typically respond to your request within one month, although this can be extended by two months if your request for rectification is complex.
Request erasure of personal data.
This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
Request restriction of processing of personal data.
This enables you to ask us to suspend the processing of your personal data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
Request the transfer of personal data to you or to a third party.
We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
Withdrawing Consent
Where we are using consent as our legal reason for processing your data, you have the right to withdraw your consent for us to collect, process and store your data at any time. If you wish to withdraw your consent, please confirm this in writing to our Data Protection Administrator:
By Post:
Data Protection Administrator
Seven Group
Cardinal Court
35-37 St Peters Street
Ipswich
Suffolk
IP1 1XF
Email: dpa@sevengroup.co.uk
Please note, by withdrawing consent, Seven Group may be unable to execute the contract that you have entered into with us and will result in termination of our services. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
Right to complain
If you have a complaint about any aspect of data protection or if you feel your privacy has been breached by us, we would like to hear from you. To help us investigate and resolve your concerns as quickly as possible, please contact our Data Protection Administrator:
By Post:
Data Protection Administrator
Seven Group
Cardinal Court
35-37 St Peters Street
Ipswich
Suffolk
IP1 1XF
Email: dpa@sevengroup.co.uk
If you are unhappy with the final response you have received from Seven Group, you have the right to complain to the supervisory authority, the Information Commissioner’s Office (ICO) within three months of your last meaningful contact with us. You can call the ICO on 0303 123 1113 or by visiting their website: https://ico.org.uk/.
Changes to the Privacy Policy
Due to the further development of our website, government regulations or the implementations of new technologies, this policy will be reviewed, and may change, from time to time. Seven Group reserves the right to change this data protection information at any time with effect for the future. The revised policy will be posted to this page so that you are always aware of the information we collect, how we use it and under what circumstances we disclose it. We therefore recommend you read the current data protection information again from time to time.
Last updated: 22 May 2018