What is Personal Data?
- The GDPR defines personal data as:-‘any information relating to an identified or identifiable natural person’
- A natural person is defined in the GDPR as a person-‘who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person’
- A natural person means an individual, such as you, rather than a limited company, partnership or business.
- Although you may be providing us with information as part of your employment, or running your business, if that information, separately or together with other information we hold, means you could be identified as an individual, that information will still be considered personal data for the purposes of GDPR.
- The GDPR does not only apply to information stored electronically but applies equally to manual paper-based filing systems where personal data is accessible according to specific criteria.
- Personal Data would obviously include personal details such as your name and address from which you could be easily identified. It could also include your telephone number, date of birth, email address, the IP address for your computer as well as all the information connected to any customer account you have with us.
The Personal Data we collect and process
- We have set out in the Schedule to this Policy details of when we collect data, the data we collect and the justification we have for processing it.
How we use your Personal Data
We will only ever use your Personal Data;
- in a manner to which you have expressly consented;
- to fulfil any contract with you;
- for the supply of goods; or
- Where another legitimate business interest exists.