This privacy notice provides information on how we will collect and process your personal data when you visit our website to take part in the Rewards Scheme. This website is not intended for children and we do not knowingly collect data relating to children.
Distell Rewards and Management Scheme team at Thesourcer.com, on behalf of Distell International Limited is the ‘Controller’ and will be responsible for your personal data.
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We only collect, use, store and transfer basic personal data about you, which includes:
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
We collect data from and about you through direct interactions. You may give us your Identity and Contact Data by filling in forms or by corresponding with us by phone, email or otherwise. This includes personal data you provide when you enter a promotion or contact us.
Generally, we do not rely on consent as a legal basis for processing your personal data. You have the right to withdraw consent at any time by contacting us. We will only use your personal data for the purpose for which we collected it.
We will not share your personal data with third parties.
We will not transfer your personal data outside the European Economic Area (EEA).
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents and contractors who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect of our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory or other requirements. After this period it will be deleted.
As defined in the data protection law, GDPR Article(s) 12-23, you have the following rights:
Under certain circumstances, exemption to these rights may apply. Further information is available on the Information Commissioner’s Office website at:www.ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/exemptions/.
If you consider that your personal data has been misused or mishandled by us, you can raise this with the data controller.
If you remain dissatisfied you can make a complaint to the Information Commissioner, who is an independent regulator. The Information Commissioner can be contacted at:
Post: Information Commissioner’s Office Wycliffe House Water Lane Wilmslow Cheshire SK9 5AF
Telephone: 0303 123 1113
Any complaint to the Information Commissioner is without prejudice to your right to seek redress through the courts.