We may change this policy from time to time, so you should check our website periodically to ensure that you are happy with any changes.
Who we are
This policy applies to Cube Partnership Ltd
What information do we collect?
We do not collect or hold any sensitive personal data as defined by the General Data Protection Regulation, 2018. The type of data we collect differs depending on what type of business relationship you already have with us or may have in the future.
If you are in one of the groups below, we may collect some, or all, of the following information:
If you are an existing or prospective client
We may collect your name, job title, business address, phone numbers, email addresses, IP addresses, cookie details and feedback on the quality of our service, either on an ad hoc basis or as the result of undertaking research.
If you are a supplier
We may collect your name, job title, business address, phone numbers, email addresses, bank account details, IP addresses, demographic, geo-location, cookie details, and feedback on the quality of our service, either on an ad hoc basis or as the result of undertaking research.
We use analytics software. Your email address and social media profile can also be appended to your visitor profile if you complete a form on our website. This enables us to identify you as an individual and to provide you with a higher quality and a more personalised experience.
How do we use personal information?
We aim to provide our clients with a quality, personalised service based on a professional business relationship. The specific purposes vary depending on the relationship you already have with us or may have with us in the future.
We store your personal data in our digital address book and accounting systems.
We use a number of different software applications and software providers with servers based around the world and your personal data could be stored and processed on one of these servers, our computers, phones in our office or locally in the UK, Europe or worldwide.
What legal basis do we have for processing your personal data?
We are data processors in that we use your information to efficiently administer our business. This involves holding your personal data for legitimate business reasons, eg. communicating with you by phone, email, text and by post, fulfilling our contractual obligations and contractual transactions with individuals and companies, including our compliance with HMRC and Health & Safety regulations.
The processing enables us to;
• Introduce us and our services to you
• Communicate with you during normal business activity
• Identify and prevent fraud
There may be up to four different lawful bases upon which we process your personal data. These are:
Contract – Such processing is necessary to enter into or perform a contract with you in order to provide you with a high-quality service.
Legitimate interest – It is in our legitimate interest to communicate with you and you would reasonably expect us to use your personal data to learn more about you before, during and after making contact.
Consent – You have consented to the processing of your personal data for specific purposes.
Legal – Under certain circumstances we are required by law to process your personal data, to comply with, but are not limited to HMRC and Health & Safety regulations or to identify and prevent fraud.
When do we share personal data?
We will never sell, distribute or lease your personal data to third parties unless we are required by law to do so.
Your personal data is restricted to employees of Cube Partnership, members of the Cube International group, and trusted freelancers, contractors or suppliers who need to have the information in order to process it and are subject to contractual confidentiality obligations and may be disciplined or have their contracts terminated if they fail to meet these obligations.
If you are an existing or prospective client:
If you are a supplier:
We may also share your personal data to help us to detect, prevent or address fraud, security or technical issues or protect the rights, property or safety of Cube Partnership as required by law.
How do we secure personal data?
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure your personal data.
We have installed an SSL certificate on our website to encrypt any personal data that you provide us. We review our information collection, storage and processing practices, including security measures to mitigate the risk of unauthorised access to our systems.
We use desktop, laptop and mobile computers to store your personal data with some paper-based records.
How long do we keep your personal data for?
Unless you ask us to destroy your personal data, we will hold it whilst we have a business relationship with you, whilst we believe there is future business potential with you or keep these for at least three years.
Your rights in relation to personal data and how to contact us
If you think we have not respected your personal data rights, wish to restrict or to object to the way we process your personal data, to amend or destroy your personal data or simply to request details of the personal data which we hold about you under the General Data Protection Regulation 2018, then please contact Carl Thompson (email: firstname.lastname@example.org) and we will respond within one month.
Linking to other websites / third party content