Privacy Notice

I’m Susie Jackson, and I’m committed to maintaining the trust and confidence of visitors to my website, my clients, my collaborators and my suppliers. This Privacy Notice outlines when and why I collect personal data, what I collect, what I will do with it, and the rights you have over it.

You may contact me in my capacity as Data Controller, according to the General Data Protection Regulation (GDPR) (EU) 2016/679, in the following ways:

  • By email at susie@susiejackson.co.uk

  • By phone on +44 (0)117 230 5152

  • By post at Springfield House, Gossington, Gloucestershire, GL2 7DN, United Kingdom

WHEN I COLLECT YOUR DATA

I will collect personal data from you in the following situations:

  • When you visit my website;

  • When you book a call with me;

  • When you email me;

  • When you purchase a digital product from me;

  • When you download one of my free resources.

WHAT DATA I COLLECT

Personal data collected may include your name, contact details (postal address, email address, telephone number, Skype name, website URL), city/country of residence, IP address, historical data (contact history, terms of work, communication data, turnover data, data about services provided), bank account/payment information and VAT number, and anything else which I deem necessary to run my business.

WHY I COLLECT YOUR DATA AND HOW I WILL USE IT

I collect, store, and use personal data for the purposes of fulfilling a contract (or preparing to do so, such as putting together a quotation), in the legitimate interest of my business, with your explicit consent, or to comply with legal or tax obligations.

I will use your contact or financial details to contact you in relation to any work we are negotiating or have agreed, to invoice you or pay you, and to update you on my availability, services, and skills.

I will use data collected via cookies on my website, such as IP address, to assess the performance of my website. Such data will not be used to contact you or associated with you in any way.

HOW LONG I WILL KEEP YOUR DATA FOR

I will retain your personal data for the duration of our business relationship and for the length of time required to comply with legal and tax obligations. This means that records of a mentoring relationship, documents that we have shared as part of a contract, emails, and client database will be retained for six years. Data relating to prospects and quotations which have not resulted in us working together will be retained for two years. Website analytics data will be retained for 26 months.

WHY I MAY DISCLOSE YOUR DATA TO THIRD PARTIES

If I outsource any work to a colleague, any shared documentation will either be anonymised so that your personal data does not appear, or the colleague will be asked to sign a Data Processing Agreement. They will be advised of their legal obligations regarding confidentiality and data protection.

I may need to share your personal data with other third parties for administrative purposes, such as my website and email hosting services, tax authorities, and “Software as a Service” (Saas) providers. I have Data Processing Agreements in place with all these third parties and they are compliant with the GDPR.

HOW I WILL KEEP YOUR DATA SECURE

I take all reasonable precautionary measures to guarantee that your personal data is safeguarded.

Devices: All electronic systems and devices used for storing or processing personal data are password protected or require facial recognition for access. They are also updated as frequently as possible. Anti-virus software and firewalls are installed to prevent the theft or destruction of this information, and these are also regularly updated.

Back up: Personal data is backed up to cloud storage, so that it can be recovered in the event of loss or damage. I have Data Processing Agreements in place with the third-party cloud storage providers I use to ensure the security of your data.

In the event of a security breach of personal data, e.g. due to theft, loss, or unlawful access, I will notify the Information Commissioner’s Office (ICO) within 72 hours.

YOUR RIGHTS OVER YOUR DATA

You have the following rights in relation to your personal data:

  • The right to be informed

  • The right of access

  • The right to rectification

  • The right to erasure

  • The right to restrict processing

  • The right to data portability

  • The right to object

Please send any such request directly to me using the contact details provided above, and I will act upon this as soon as possible, within no more than 30 days from the date of your request.

You also have the right to lodge a complaint with the ICO if you believe my actions are not compliant with the GDPR.

This Privacy Notice was updated on 26th January 2020 and will be reviewed as necessary.