The General Data Protection Regulation (GDPR) comes into force in May 2018 and replaces the 1998 Data Protection Act (DPA). It’s a very important piece of legislation that affects Pixel, its clients and suppliers. This Privacy Notice explains in detail the types of personal data Pixel may collect when we interact with you. It also explains the steps we have taken to process that data and keep it safe. We hope the following sections will answer any questions you have but if not, please do get in touch with us.
We are the UKs leading digital signage provider. For over 14 years we’ve provided best-in-class digital communication and marketing services to some of the world’s biggest brands, including Thomas Cook, Loreal, Argos, Sainsbury’s, Lloyds Banking Group and WHSmith.
Our solutions and services help our client’s marketing and communication staff manage and deliver their marketing activity and campaigns into distributed locations across the world.
In practice, this means we deliver, install and support physical infrastructure such as displays on behalf our clients, usually to business addresses. The goods we deliver are “not for resale”. Acting on behalf of our clients means we act as a “processor” of your data. We use data provided by our clients, e.g a name and address, to deliver goods for them or to provide support services for named individuals on the shop floor. Delivering goods means we work with a range of parcel carriers so we share your delivery details with them too.
Explaining the legal basis for processing your data
Pixel must have a valid lawful basis in order to process personal data. The first principle of data protection law requires that Pixel processes all personal data lawfully, fairly and in a transparent manner.
We have listed and evaluated our processing and made a record of the lawful basis for processing.
In most situations, we require your data to pursue our legitimate interests in a way which might reasonably be expected as part of running our business and which does not materially impact your rights, freedom or interests. In specific situations, we can collect and process your data with your consent. For example, if we request contact details of an on-site contact for a service or install visit.
When do we collect your data?
When our client supplies your name, address and contact information so we can deliver goods or our support service. This may be in an email or phone call in to our client services, logistics or support team/.
When you contact us by any means with queries, complaints etc.
What sort of data do we collect?
The bulk of our processing activity is concerned with name, address data and contact data that has been passed to us by our clients for the purpose of delivering goods and services. That means we may store your phone number and email address to help manage the process.
How we protect your data
Pixel has implemented a series of technical and organisational security measures to keep your data safe.
We use certified cloud services with data centres that meet international standards and have up to date cyber security systems to help keep intruders at bay.
Pixel team members have had information security training which is kept on record. New starters naturally received the same training.
We are working towards ISO27001 certification.
Our use of cloud computing suppliers is subject to checks that adequate safeguards have been put in place to protect your data.
How long do we keep your data?
Data is processed in Pixel systems for the purpose of delivering items or services to an on-site contact. This data will be stored against the client company support profile for the duration of the contract with the client.
Who do we share your data with?
Delivering goods means we work with a range of parcel carriers. We create labels to attach to parcels and pallets and created delivery manifest files to help the carrier process your delivery. This data is shared for the purpose of delivering goods and is not used for marketing purposes or large-scale analysis.
Where do we store your data? Our data centres are in Europe. In addition, we use “cloud computing” providers such as Google and Microsoft for services such as email.
What are your rights over your personal data?
You have the right to request:
- Access to the personal data we hold about you, free of charge in most cases.
- The correction of your personal data when incorrect, out of date or incomplete.
- That we stop any consent-based processing of your personal data after you withdraw that consent.
You have the right to request a copy of any information about you that Pixel holds at any time, and also to have that information corrected if it is inaccurate.
To ask for your information, please contact:
Operations Director, Pixel Inspiration, Red 1, Atlantic Street, Altrincham or email: firstname.lastname@example.org
If we choose not to action your request we will explain to you the reasons for our refusal.
Your right to withdraw consent
If you have given us your consent to use your personal data, you have the right to change your mind at any time and withdraw that consent. Where we rely on our legitimate interest: In cases where we are processing your personal data on the basis of our legitimate interest, you can ask us to stop for reasons connected to your individual situation. We must then do so unless we believe we have a legitimate overriding reason to continue processing your personal data.
Proof of identity
We require proof of your identity before we can disclose personal data. Proof of your identity should include a copy of two documents such as your birth certificate, passport, driving licence, official letter addressed to you at your address e.g. bank statement, recent utilities bill or council tax bill.