Skip to content

Privacy Policy

Arc (UK) Systems Limited is a company registered in England and referred to as “Arc”, “we”, “our” or “us” in this policy.

General

Personal data relates to a living individual who can be identified from that data. Identification can be the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation 2016/679 GDPR and the Data Protection Act 2018.

The owner of that personal data is referenced in the legislation as the Data Subject. Arc are the Data Controllers and determine how your personal data is processed and for what purposes. Arc comply with their obligations under GDPR by keeping personal data up to date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse, unauthorised access and disclosure and by ensuring that appropriate technical measures are in place to protect personal data.

 

Legal basis

We process the data we collect based on our legitimate interests in selling and securing our products, running our business and direct marketing our products and services. We also collect data to comply with legal and compliance obligations, maintain accurate business records and generally to enable the proper administration of our business.

 

How we use your data

We require this information to service your contract, understand your needs and provide you with a better service, and in particular for the following reasons:

  • To supply you with services.
  • Provide notifications relative to providing the services
  • To send our newsletter or general and marketing communications by Email, Telephone, Social Media or by post about new products, surveys and special offers when there is a legitimate interest to do so. (You can inform us at any time if you no longer require marketing information (Opt Out)  via email [email protected] or Telephone 01268 288100)
  • We may also use your information to contact you for market research purposes and we may use this information to improve our products and services.
  • Web Banner Advertising – if you visit our website, you may receive personalised banner advertisements whilst browsing other websites and these will relate to any product or service you viewed on our website.

 

What data we collect

We may collect the following information:

  • Name and job title.
  • Contact information including email address, telephone number and postal address.
  • Your correspondence and communications with Arc.
  • This list is not exhaustive and, in specific circumstances, we may need to collect additional data as set out in this policy from other third parties who have your consent or from publicly available sources.
  • Publicly available personal data includes any you have shared via a public platform such as Twitter, LinkedIn or Companies House.

Our website and services are for businesses and not intended for use by children and we do not knowingly collect data relating to children.

 

Telephone recording

Arc has a telephone system that is capable of recording conversations. Like many other organisations, this is a standard practice that allows the recording of telephone calls for quality monitoring, training, compliance and security purposes.

For those calling our helpdesk line, callers are clearly informed that the call may be recorded at the start of the conversation. Calls to other lines (e.g. direct phone lines) received may be recorded by Arc. External calls made by employees of the business may also be recorded by Arc.

Under normal circumstances a call will not be retrieved or monitored unless:

  • It is necessary to investigate a complaint;
  • There is a threat to the health and safety of staff or visitors or for the prevention or detection of crime;
  • It is necessary to check compliance with regulatory procedures; or
  • It will aid standards in call handling through use in training our staff. However, this will only be permitted if the recording is edited so that the caller remains anonymous and the member of staff who was party to the call agrees to its being used in this way.
  • Personal data collected in the course of recording activities will be processed fairly and lawfully in accordance with the General Data Protection Act 2018.

It will be:

  • Adequate, relevant and not excessive;
  • Used for the purpose(s) stated in this policy only and not used for any other purposes;
  • Accessible only to managerial staff after securing permission from the Data Protection Officer
  • Treated confidentially;
  • Stored securely; and
  • Not kept for longer than necessary and will be securely destroyed once the issue(s) in question have been resolved.

 

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorized access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect.

 

Sharing data with third parties

We will only disclose information about you to third parties if we are legally obliged to do so or to fulfil our contractual duties to you, for instance we may need to pass on certain information to an external provider to enable the delivery of goods and services. These providers include, but are not limited to, Software or Hardware Vendors/Distributors, insurance companies and insurance brokers, external lawyers, external auditors or other service providers required in the course of delivering our services to you.

Arc only allows the service providers to handle your personal data when we have confirmed that they apply appropriate data protection and security controls. Aside from these service providers, Arc will not disclose your personal data to third parties.

 

Retention of data

Personal data will not be stored or held for more than six years plus the current year unless there is a specific reason for doing so. The definition of current will vary according to the personal data.

The current plus six years’ rule is the usual maximum period of retention. If there is no need to keep personal data longer than that period it should be disposed of securely before the six years limit. Exemptions from the rule of 6 years’ retentions are the following categories:

Contractors Records will be retained for seven years plus the current year;

Financial Records will be retained for ten years plus the current year;

Data Protection Requests are retained for seven years plus the current year;

Personnel Records are retained for ten years plus the current year;

Health and Safety Records are retained for ten years plus the current year;

Once the above period of each data category has expired, Arc has the right to erase or destroy the personal data without any impact.

 

Controlling your personal information

You may request details of personal information that we hold about you and/or you may choose to restrict the collection or use of your personal information by contacting us in the following ways:

Telephone: 01268 288100

Email: [email protected]

Write to: Data Protection Officer, Arc (UK) Systems Ltd, Unit 9 Carnival Way, Basildon, Essex, SS14 3WN

We accept the following forms of ID when we receive a Subject Access Request:

A Photo Driving License, Valid Passport, Proof of Age Card or Birth Certificate.

 

How we use cookies on our website

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyze web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyze data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

 

Links to other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

 

Employee data

The information we hold regarding our employees may include disabilities, medical records, origin, religion, date of birth, nationality, bank account number, social security number, personal tax number, criminal record, credit history check, driving license and checks, family details, disciplinary records, working visa, photos, visual identifiers, performance plan progress, or gender identifiers.

Where necessary we may keep information relating to your health, which could include reasons for absence and reports and notes. This information will be used to comply with our health and safety and occupational health obligations – to consider how your health affects your ability to do your job and whether any adjustments to your job might be appropriate. Where we may process special categories of information relating to your racial or ethnic origin, political opinions, religious and philosophical beliefs, criminal record, credit history check, family details, disciplinary records, working visa, photo, visual identifiers, performance plan progress, gender identifiers etc.

We will always obtain your explicit consent to those activities, unless this is required to protect your health in an emergency, or another legal justification found under Article 9 of GDPR.

In addition, we monitor computer and mobile telephone use, as detailed in our IT policy.

 

Let’s work together to make technology work

Get in touch

If you’re looking for more than quick fixes, from a trusted technology partner with vision, get in touch to discuss how we can meet your specific IT challenges.

Get in touch

Services

Help and support

Company

BSI ISO logo 27001 BSI ISO 9001

Website by Hallam