Gas Tech (Wales) Limited are a licenced credit broker and not a lender. Please note that all loans are subject to lender's assessment and approval.
Gas Tech (Wales) Limited is authorised and regulated by the Financial Conduct Authority. Firm Reference Number: 622629
Registered in England & Wales with Companies House - Company Registration Number: 07789017 Data Protection Number:ZA015027
8.2 PRIVACY NOTICE
The Company defines a Privacy Notice as a document, form, webpage or pop-up that is provided to individuals at the time we collect their personal data (or at the earliest possibility where that data is obtained indirectly).
Our Privacy Notice includes the Article 13 (where collected directly from individual) or 14 (where not collected directly) requirements and provides individuals with all the necessary and legal information about how, why and when we process their data, along with their rights and obligations.
We have a link to our Privacy Notice on our website and provide a copy of physical and digital formats upon request. The notice is the customer facing policy that provides the legal information on how we handle, process and disclose personal information.
The notice is easily accessible, legible, jargon-free and is available in several formats, dependant on the method of data collection: -
• Via our website
• Linked to or written in full in the footer of emails
• Worded in full in agreements, contracts, forms and other materials where data is collected in writing or face-to-face
• In employee contracts and recruitment materials
• Verbally via telephone or face-to-face
• Via SMS
• Printed media, adverts and financial promotions
• Digital Products/Services
• Automated phone service
With lengthy content being provided in the privacy notice and with informed consent being based on its contents, we have tested, assessed and reviewed our privacy notice to ensure usability, effectiveness and understanding.
We follow the below ICO preferred steps for testing, reviewing and auditing our privacy notice(s) and opt-in consent formats prior to use and to record such assessments.
1. Privacy Notices are drafted by the Data Protection Officer using the data protection laws requirements and with Supervisory Authority guidance
2. We utilise a select customer base to test the Privacy Notice in its varying formats and provide a feedback form for completion, verifying the below points: -
a. How did you use the Privacy Notice (e.g. website, agreement, orally)?
b. Did you find the information in the Privacy Notice easy to read, understand and access?
c. Did you gain a full understanding of how we intend to use your data, who it will be shared with and what your rights are?
d. Did you feel confident in giving consent to use your personal data after reading the notice information?
e. Was there anything you did not understand?
f. Did you find any errors?
g. What, if anything, would you like to see changed about the Privacy Notice?
3. All feedback responses are saved with a copy of the used Privacy Notice and improvements are made and recorded where applicable
4. Re-testing is carried out on a new set of customers to ensure variety and independent assessment and verification
5. After a successful test, the acceptable Privacy Notice is rechecked against the data protection laws and Supervisory Authority regulations and guidelines to ensure it still complies and is adequate and effective
6. The final Privacy Notice(s) are then authorised by Senior Management/Director(s) before being rolled out
Where we rely on consent to obtain and process personal information, we ensure that it is: -
• Displayed clearly and prominently
• Asks individuals to positively opt-in
• Gives them sufficient information to make an informed choice
• Explains the different ways we will use their information
• Provides a clear and simple way for them to indicate they agree to different types of processing
• Includes a separate unticked opt-in box for direct marketing