What is a Privacy Notice?
A privacy notice is a statement that discloses some or all the ways a party gathers, uses, discloses and manages data. It fulfils a legal requirement to protect an individual’s privacy in accordance with the high standards required by the European Union’s General Data Protection Regulation (GDPR).
What is GDPR?
The GDPR is a regulation intended to strengthen and unify data protection for everyone within the European Union (EU). The GDPR requires a greater openness and transparency from companies on how they collect, store and use personal data, while also imposing tighter limits on the use of personal data.
How AtlanticRMS use Personal Data
The types of personal information we may collect and process are;
- Information received about you (from you or third parties), when we are engaged by a client to provide services. For example, if you are a contact point at a business where Atlantic have been engaged to undertake Due Diligence services.
- Information received from you when you make an enquiry to Atlantic, or engage Atlantic to provide services to you or your organisation.
- Information collected when undertaking networking activities.
- Information provided by Recruitment consultants who may provide information about you to us in relation to a potential position with Atlantic.
The information we receive may include name, place of work, business email address, business address and business telephone numbers.
This information may be used in the following ways;
- To fulfil the services, we have been engaged to undertake. For example, recovering Accounts Receivable on behalf of our client.
- To contact you to arrange appointments and meetings.
- Where consent has been obtained (via our opt-in consent process), we may send email communications containing marketing materials from time to time.
Information may be shared with third parties;
- Where our work may require us to provide information to third parties who will use the information for the purposes of providing services to us or directly to you on our behalf. Such third parties may include insurers, for example.
- Where it may be required by mandatory law, court order of regulation.
- Where it may be required in judicial, regulatory or arbitral proceedings to the extent that this must be deemed necessary as a valid defence against any claim or allegation. In which case, Atlantic shall notify you of such disclosure.
- No personal data is sold to third parties.
When third party service providers are used, we only disclose to them the personal data that is necessary for them to provide their services and we have an agreement in place that requires them to keep data secure and prevents them from using data for any other purpose other than our specific instruction.
How Atlantic secure Personal Data
Atlantic is committed to protecting the security of your personal information. Atlantic takes precautionary measures to help protect information about you from loss, theft, misuse and unauthorised access, disclosure, alteration and destruction. As such, information held is stored as follows;
- Data is held electronically in the cloud
- Data is held in the UK
- Data is encrypted
Only authorised personnel have access to personal data held, and will only access data as relevant to the project or task they are working on.
Personal Data Retention
Atlantic will retain personal information for as long as we deem it necessary to perform our duties and services.
Where Atlantic is the data controller individuals’ rights are as follows;
- You have a right of access to personal data held by us. This right may be exercised by emailing email@example.com. We may charge for a request for access in accordance with applicable law. We will aim to respond to any requests for information promptly, and in any event within the legally required time limits (currently 40 days).
- You have a right to amend and update personal data submitted to us. To do this please email firstname.lastname@example.org. Changes to personal data will be made as soon as practically possible.
- Where we process personal data based upon consent, individuals have a right to withdraw consent at any time. We do not generally process personal data based on consent (as we can usually rely on another legal basis). To withdraw consent to our processing of your personal data please email us at email@example.com.
- Where we process personal data based upon consent, individuals have a right to have personal data deleted/erased. To do this please email firstname.lastname@example.org.
If you want to complain about our use of personal data, please send an email with the details of your complaint to email@example.com and we will look into and respond as soon as practically possible.
You also have the right to complain to the Information Commissioner’s Office (“ICO”). For further information on your rights and how to complain to the ICO, please visit the ICO website.
If you have any questions about the use of your Personal Information, please email firstname.lastname@example.org.
The data protection officer for Atlantic Risk Management Services Ltd and AtlanticRMS, LLC is Mr Adam Clancy, Operations Director, and can be contacted at the following address: 4th Floor, 83 Baker Street, London, W1U 6AG.
In order to comply with GDPR, we no longer use external facing cookies on this website. We do, however, use ‘necessary’ cookies internally to allow us to make content changes using our internal Content Management System. We have listed these here for transparency. See cookiesandyou.com for more information about how you can restrict or block cookies.
|PHPSESSID||atlanticrms.com||Allows internal staff to login to the Content Management System and make content changes.||Session||HTTP Cookie|
|cmsa||atlanticrms.com||Allows internal staff to login to the Content Management System and make content changes.||Session||HTTP Cookie|