We take privacy seriously. The purpose of this statement is to set out the principles governing our use of personal data we may obtain about you.
Who we are
Dirty Liquor LTD is the “Controller” of the personal data you provide us. We are registered with the Information Commissioner’s Office (ICO) and our registration number is ZA277932.
The information we collect
In most circumstances we will only collect basic personal data about you, which does not include any special categories of personal data about you (known as “sensitive personal data”). This data may however include name, email and/or other contact details.
Specific details about what personal data we collect, how and why we collect personal data about you, what we do with the personal data about you, specific retention periods and the consents that we require from you are contained in the individual privacy notices that are available from the Dirty Liquor LTD Privacy Notices webpage.
Wi-Fi sign up and use of Web App
Information on what you view, click on and access in and through our marketing emails, websites and mobile apps. We also collect this information when you use our WIFI networks to access the internet. We may collect the time and geographic location of your device when you do so. For websites, this information may also include where you came to our business from, and where you went when you left it. We also track how often you visit and use our websites and mobile apps.
Technical information about the devices you use to access our websites and mobile apps. We also collect this information when you use our WIFI networks to access the internet. We collect each device’s unique identifying codes e.g. its “MAC” address, relevant IP address, operating system and version, web browser and version, and geographic location.
All the personal data is received and processed in the UK by our employees, agents, advisors, suppliers, contractors and/or partners. Dirty Liquor LTD will not trade, sell or share your personal identifiable data for use by any third parties unless we have been authorised by you or are required by law to do so.
Please be aware however that your data may be stored on a cloud based system or on servers based outside the UK but within the EU.
How long we keep information
We keep your personal data for no longer than reasonably necessary for the purposes for which it is provided. We will only keep personal data for longer if authorised by you or if we are required to do so by law.
If, for example, you have authorised use of your personal data for marketing purposes, this will be kept with us until you notify us that you no longer wish for us to use it. Specific retention periods are set out in the Privacy Notices linked above.
If you wish to see, correct, update, transfer or delete any of the personal data that we hold about you, please write to the Data Protection Officer at Dog & Duck 222 Chingford Road, London E17 5AL with your request.
If you wish to raise a complaint on how we have handled your personal data or you have a general query related to data privacy, you can contact our Data Protection Officer by writing to Dog & Duck 222 Chingford Road, London E17 5AL, who will arrange for the investigation of the matter. We recommend that correspondence is sent recorded delivery and/or with proof of postage.
If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the ICO.
Securing your information
We take the security of your personal data very seriously and have in place appropriate security measures. We protect the confidentiality, integrity and availability of personal data by implementing the following key practices:
· Protect our IT systems (i.e. network, systems, data, and websites) from unauthorised access and threats such as malware and denial of service attacks.
· Integrate data minimisation techniques in to the collection and sharing of personal data. As a result, we only collect personal data that we need and share the bare minimum of personal data required to deliver a service.
· Personal data is destroyed or anonymised when it is no longer needed.
· Apply methods to ensure personal data is accessed and processed by authorised users and systems.
· Personal data is encrypted to make it unreadable to unauthorised parties.
· Provide data privacy, security and awareness training to employees to support secure handling practices.
· Supplier GDPR and security compliance strategies are implemented to ensure those we may share personal data with hold the same values as ourselves.
Notification of data breaches
If you discover a data privacy breach or a breach is notified to you please email email@example.com as soon as possible. The email should contain your contact information and key details of the breach. This email account is proactively monitored and a Data Privacy Champion will be in contact.
Notification of changes
We may occasionally modify our privacy policies, notices and statement. When this happens, we will provide details as to the changes on this web page or via the links on this web page, at the point of data collection or by contacting you directly. We will not significantly change how we use information you have already given to us without your prior agreement.
Links with other websites
This Privacy Statement is in relation to Dirty Liquor LTD . We are not responsible for the data policies or procedures or content of any linked websites. We recommend that you check the privacy statement of each website you visit.
Dirty Liquor LTD