Redcorn Ltd, a company registered in England and Wales (No. 02768567) with a registered office at: Brantwood Road, London. N17 0DX collects, uses and is responsible for certain personal information about you. We know that Your privacy is very important to you which makes it very important to us. We aim to be as clear as possible in this Statement in respect of Your Personal Data.
What personal data we may collect and how we use it
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We may collect, use, store and transfer different kinds of data about you, which we have grouped together as follows:
Identity Data includes your name, title, username or similar identifier, car registration number, copies of documents used to verify your identity and photographs that you may provide.
Contact Data includes your home address, billing address (if different from your home address), the address of the car location (if different from your home address), email address, social media profile and your phone numbers and any phone number used to call our customer service number.
Financial Data includes your bank account and payment details.
Transaction Data includes details about payments to and from you and other details about services you have used.
Technical Data includes the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our site and our App.
Profile Data includes account usernames and passwords, your preferences, feedback and survey responses.
Usage Data includes information about how you use our site, our Data App, products and services, including the full Uniform Resource Locators (URL) clickstream to, through and from our site or our App (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.
Marketing and Communications Data includes your preferences in receiving marketing from us and our trusted network partners and your preferences for how we contact you.
‘Special category’ data
We do not collect any Special Categories of Personal Data about you (such as details about your race or ethnicity, religious of philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, genetic or biometric data).
Comments and Reviews
When visitors leave comments or reviews on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website may download and extract any location data from images on the website.
If you make enquiry using the contact form on our website your personal data is stored until such time where your enquiry is completed or we have a legal obligation to retain that data. For a general enquiry where we have no need to store it for legal purpose it will be deleted within 30 days.
Scrap Car Request Forms
The data we store using these forms may be held for up to 10 years.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
We may share your personal information with the parties set out below:
- the DVLA
- other personnel within your organisation, or any other organisation that is party to or otherwise has a legitimate interest in the agreement between us and your organisation
- providers of IT and system administration services to our business
- our professional advisers (including solicitors, bankers, auditors and insurers)
- HM Revenue & Customs, the Information Commissioner’s Office, Trading Standards, Law enforcement, regulators and other authorities who require reporting of processing activities in certain circumstances
- analytics and search engine providers that assist us in the improvement and optimisation of our website.
- third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal information in the same way as set out in this policy.
We require all third parties to respect the security of your personal information and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal information for their own purposes and only permit them to process your personal information for specified purposes and in accordance with our instructions.
How long we retain your data
The length of time that we will store your data will depend on the ‘legal basis’ for why we are using that data, as follows:
Where we use/store your data because it is necessary for the performance of the contract between you and us we will use/store your data for as long as it is necessary for the performance of the contract between you and us.
Where we use/store your data because it is necessary for us to comply with a legal obligation to which we are subject we will use/store your data for as long as it is necessary for us to comply with our legal obligations
Where we use/store your data because it is necessary for our legitimate business interests We will use/store your data until you ask us to stop. However, if we can demonstrate the reason why we are using/storing your data overrides your interests, rights and freedoms, then we will continue to use and store your data for as long as it is necessary for the performance of the contract between you and us (or, if earlier, we no longer have a legitimate interest in using/storing your data).
Where we use/store your data because you have given us your specific, informed and unambiguous consent we will use/store your data until you ask us to stop
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Where do we store your personal information
All information you provide to us is stored on our secure servers in the United Kingdom.
We will take all steps reasonably necessary to ensure that your data is treated securely, including taking the following safeguards:
PCI DSS standards. Where you need to make a payment to a finance company using your credit card, we use the secure Authorize.net portal or Barclaycard which is fully compliant with PCI DSS standards. Our systems do not record any of the information entered into this portal.
Building entry controls & secure storage. Our data is held at a data centre with secure access controlled via 24 hr security, biometric access, internal & external CCTV & security breach alarms. Our Central Support team operate in a building with secure access & alarmed entry controlled by allocated swipe card access internal & external CCTV, with visitors access logged via reception, & escorted entry once in the building.
Secure lockable desks and cupboards. Where documents containing personal information are in paper form for an interim period, they are stored in secure Desks and cupboards.
Methods of disposal. Paper documents are disposed of by shredding in a manner that ensures confidentiality.
Firewalls and Encryption. We use up-to-date and industry-standard firewall and encryption software technology.
Overseas transfers. Whenever we transfer your personal data out of the UK / EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
- Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
We ensure your personal data is protected by requiring all our third parties to follow the same rules when processing your personal data. These rules are either the SCC, or are “binding corporate rules”.
If you are concerned about the levels of data security in any of those countries, please let us know and we will endeavour to advise what steps will be taken to protect your data when stored overseas.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Third party links
Our website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
Access to your personal data
Under certain circumstances, you have rights under data protection laws in relation to your personal data.
- Request access to your personal data.
- Request correction of your personal data.
- Request erasure of your personal data.
- Object to processing of your personal data.
- Request restriction of processing your personal data.
- Request transfer of your personal data.
- Right to withdraw consent.
If you wish to exercise any of the rights set out above, please contact us.
No fee usually required
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
What we may need from you
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
Time limit to respond
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Postal address: Redcorn Ltd. Brantwood Road, London. N17 0DX
Telephone number: 020 8880 9990
Full name: Redcorn Ltd (Company number 02768567)