n accordance with the General Data Protection Regulation (GDPR), we have implemented this privacy notice to inform you, our customer, of the types of data we process about you. We also include within this notice the reasons for processing your data, the lawful basis that permits us to process it, how long we keep your data for and your rights regarding your data.
This notice applies to current and former customers.
a) Your Personal Data – What Is It?
Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by the General Data Protection Regulation (the “GDPR”).
B) Who Are We?
Da Bara Ltd is the data controller (contact details below). This means it decides how your personal data is processed and for what purposes.
C) Data Protection Principles
Under GDPR, all personal data obtained and held by us must be processed according to a set of core principles. In accordance with these principles, we will ensure that:
a) processing is fair, lawful and transparent
b) data is collected for specific, explicit, and legitimate purposes
c) data collected is adequate, relevant and limited to what is necessary for the purposes of processing
d) data is kept accurate and up to date. Data which is found to be inaccurate will be rectified or erased without delay
e) data is not kept for longer than is necessary for its given purpose
f) data is processed in a manner that ensures appropriate security of personal data including protection against unauthorised or unlawful processing, accidental loss, destruction or damage by using appropriate technical or organisation measures
g) we comply with the relevant GDPR procedures for international transferring of personal data
D) Types of Data Held
We specifically hold the following types of data on our customers in order to carry out effective and efficient processes:
i) personal details such as name, address, phone numbers, email addresses, access codes, bank information, sales information
We keep this data within our computer systems, for example: customer records
E) Who We Share Your Data With
Employees within our company who have responsibility for the administration and job related procedures will have access to your data which is relevant to their function. All employees with such responsibility have been trained in ensuring data is processing in line with GDPR.
Data is shared with third parties for the following reasons: e.g. for refunds through the banking system
We have a data processing agreement in place with such third parties to ensure data is not compromised. Third parties must implement appropriate technical and organisational measures to ensure the security of your data.
We do not share your data with bodies outside of the European Economic Area.
We do not share your data with third-parties for marketing purposes.
F) Data Obtained From Our Website
We collect personal data about you when you complete our online contact form via our website or place an order for products or services. We also collect information when you voluntarily complete customer surveys and provide feedback. We collect information about you to respond to you, to process your order and manage your account.
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
How we use Cookies
Our website does not use cookies.
G) Lawful Basis For Processing
The information below categorises the types of data processing we undertake and the lawful basis we rely on: