Protecting your personal details on our website.
Last updated: 8 September 2022
Beyond The Sketch knows that you care how information about you is used and shared and we appreciate your trust in us to do that carefully and sensibly.
We regularly review our policies and so this policy is subject to change. Please ensure you check our website regularly for any further changes.
Who we are
Beyond The Sketch Ltd (registered number 10005981), whose registered office is at 71-75 Shelton Street, Covent Garden, London, England, WC2H 9JQ, is a specialist responsive website design and development service provider, website software developer and producer of characters, graphics and illustrations. We may be both the data controller and data processor of your data.
What data we collect
The personal data we may collect includes:
Name including title.
Country and region/territory.
The browser and device specific information you use to access/view our website, services and/or products.
How you will pay for the product or service including your bank details.
How you use our websites, web applications (WebApps), services, and/or products.
Records of communications and correspondence you've had with us.
Any information within correspondence you send to us.
Where we store your data
We store the data you provide to us within the UK. Occasionally, we may transfer and/or store your data outside the UK and European Economic Area for the purposes of providing you with our services and/or products.
Sometimes we may employ companies and individuals to perform functions on our behalf and may have to disclose your personal data to these parties in order for them to fulfil those functions. From time to time, these other people and organisations may be outside the UK and the European Economic Area.
Communications sent over the internet, such as emails and webmails (messages sent through a website), may go through a number of countries before they are delivered.
Communications over the internet are not secure unless they have been encrypted. As we cannot guarantee the security of any personal data you transmit to us via the internet, any transmissions of data to us is at your own risk. When we have received your data, we will use strict procedures and security features to protect it, including encryption where appropriate.
Where we get your data from
We collect your personal data from the following sources:
From you when you agree to take or purchase a service or product from us.
From you when you contact us with an enquiry or in response to a communication from us.
From you when you use our websites, web applications (WebApps), services and products.
From documents that are available to the public, (for example the electoral register, telephone directory, social media, internet, news articles).
From third parties to whom you have provided information with your consent to pass it on to other organisations or persons.
From social media platforms, when you view or interact with our profiles and content, or contact us through such platforms.
From other sources such as fraud prevention agencies and credit reference agencies.
When and with whom we share your data
We will sometimes share your personal data with trusted third parties. When this happens, we will ensure that we have specific contracts in place with these third parties which ensure your personal data is secured and will not be used for marketing purposes. We may share your data with:
Other individuals, businesses and organisations that provide services to us or we employ to perform certain functions on our behalf, for example, server hosting and email, accountancy, fulfilling orders, delivering packages, sending postal mail and email, analysing data, providing marketing assistance, providing search results and links (including paid listings and links) and providing customer service.
Regulators and law enforcement agencies (if there is a legal or regulatory obligation or reason to share your personal data or as part of legal proceedings or prospective legal proceedings).
Payment service providers or banking companies/organisations that process payments on our behalf.
One or more licensed credit reference and fraud prevention agencies.
If we, or substantially all of our assets, are acquired or are in the process of being acquired by a third party, in which case personal data held by us, about our customers, will be one of the transferred assets.
Why we collect and process your data
To perform contracts we have with you.
To provide you with our products and services.
To help us to identify you when you contact us.
To help us to identify accounts, services and/or products which you have from us.
To help us to administer accounts.
To contact you about improved administration or changes to any accounts, services and products we provide to you.
To understand how our websites, web applications (WebApps), services and/or products are used, so we can better maintain and improve them.
To allow us to carry out marketing and statistical analysis and testing. This will sometimes require that you consent, but will sometimes be exempt as market research.
To contact you about products and/or services that we offer, where you have expressly consented to us doing so.
To help prevent and detect fraud or loss.
To respond to you if you contact us with a query.
To monitor and record any communications with you including phone conversations, emails or via social media for quality assurance and compliance.
Our legal grounds for collecting and processing your data
We may use your personal data where it is required to fulfil a contract with you, such as to provide you with the products and services that we offer including enquiries, requests, quotes and all stages and activities of administration and management.
We may use your personal data where it is in our legitimate interests to do so, these interests are: to support our customers with sales and other enquiries and fulfil requests for information, to help resolve or otherwise handle complaints or concerns, to ensure network and information security, to analyse the functioning and performance of our websites and web applications (WebApps) so that we can better maintain, improve and manage our products and services, for use in fraud prevention and detection and to bring or defend legal claims.
We may use your personal data where you have specifically consented for us to do so. Where we rely on your consent, we will endeavour to explain how we intend to use the data when we collect it, and you may withdraw your consent at any time by contacting us.
We may also use your personal data to comply with our legal obligations.
How long we keep your data
We will only keep your personal data for as long as is necessary.
We will keep your personal data for as long as you are a customer of ours. When you stop being our customer, we may keep your personal data for up to 7 years due to legal and accountancy obligations.
Where you have lodged a complaint or concern with us, we will keep your personal data for up to 7 years following the date of complaint or concern.
If you are not our customer and contact us with an enquiry, or to request other information about us or our products and services, we may keep your personal data for up to 6 months, unless you become our customer following any such enquiry.
We may keep some personal data for longer or delete it sooner if the law requires us to do so.
Where it applies, if you exercise your right to have your personal data erased we will do so unless we are required to keep it in relation to any reasons permitted or required by the law.
If you prevent the collection and processing of your personal data, it may prevent us fulfilling our contractual obligations to you and from providing you with our products and services. Data protection law grants rights to individuals concerning the collection and processing of their personal data, these include:
You have the right to be informed about the processing of your personal information.
You have the right to request access to the personal data we hold about you.
You have the right to correct and update your personal data.
Where it applies, and as long as we do not have any lawful reason to continue to use your personal data, you have the right to have your personal data erased. This is also known as the ‘right to be forgotten’.
Where it applies, and as long as we do not have any legitimate grounds to continue to use your personal data, you have the right to object to our processing of your personal data.
Where it applies, you have the right to move, copy or transfer your personal data (i.e. right to data portability).
Where we rely on your consent, you may withdraw your consent at any time.
Not all of these rights apply in all circumstances, if you contact us to exercise any of your rights, we will explain to you which apply at that point.
If you would like to exercise any of your rights, you can do so by emailing us at firstname.lastname@example.org.
We capture analytics under the legitimate interest legal basis. We give you the option of accepting analytics cookies, which help us to better analyse your use of the site and WebApps. If you decline these cookies, we still continue to capture analytics in an anonymised form, however, we also offer you the option to opt-out of this using the form below.
We may provide or include links to third-party websites. We do not have control over the information supplied on these sites and cannot be held responsible for the practices and policies of such websites. You are encouraged to review the privacy policies of any such website you choose to use.
Your Right To Complain
If you have a complaint about how we process your personal information, you have the right to lodge a complaint with the Information Commissioner:
Information Commissioner's Office
0303 123 1113