PRIVACY POLICY
Sophie Griffiths Architects is committed to protecting your privacy and personal data. This privacy policy provides you with information on how we collect and process your personal data, including any data you, your employer or the organisation you represent may provide to us through an enquiry about our services, working with us or communicating with us generally.
Controller and contact details
Sophie Griffiths Architects Limited is the controller and is responsible for your personal data (collectively referred to as “we”, “us” or “our” in this privacy notice). If you have any questions about this privacy policy, including any requests to exercise your legal rights as referred to below, please contact us using the following details:
Full company name: Sophie Griffiths Architects Limited
Email address: sophie@sgarchitects.co.uk
Postal address: 11 North Road, Reigate, Surrey, RH2 8LY
Telephone number: +44 (0)7588 878352
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the opportunity to resolve your concerns before you approach the ICO so please do contact us in the first instance and we will make every effort to address them.
Changes to the privacy policy
This privacy policy was last updated in January 2024. Our privacy policy is reviewed regularly. You should check this policy occasionally to ensure you are aware of the most recent version.
The data we collect about you
We may collect, use, store and transfer different types of personal data about you as follows:
How is your data collected?
We use different methods to collect data from and about you including through:
How we use your personal data
We will only use your personal data when the law allows us to. The law says that the personal data which we hold about you must be:
Most commonly, we will use your personal data in the following circumstances:
Disclosures of your personal data
We may disclose your information to third parties in the following circumstances:
Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
For how long will we use your data?
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements. By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for up to twelve years after they cease being customers for tax and insurance purposes.
In some circumstances you can ask us to delete your personal data: see your legal rights below for further information. In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
Your consent
By submitting or providing to us your personal data you consent to the use of that information as set out in this privacy policy. You are able to remove your consent at any time by contacting us.
Your legal rights
Under data protection laws in relation to your personal data you have the right to:
If you wish to exercise any of the rights set out above, please contact us. You will not be required to pay a fee for exercising your rights. If you make a legitimate request, we will respond within one month.
Contact
If you would like to contact us to discuss any concerns you have with the way in which we are gathering or using your personal data, please contact us by email at sophie@sgarchitects.co.uk or write to us at 11 North Road, Reigate, Surrey, RH2 8LY.
Controller and contact details
Sophie Griffiths Architects Limited is the controller and is responsible for your personal data (collectively referred to as “we”, “us” or “our” in this privacy notice). If you have any questions about this privacy policy, including any requests to exercise your legal rights as referred to below, please contact us using the following details:
Full company name: Sophie Griffiths Architects Limited
Email address: sophie@sgarchitects.co.uk
Postal address: 11 North Road, Reigate, Surrey, RH2 8LY
Telephone number: +44 (0)7588 878352
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the opportunity to resolve your concerns before you approach the ICO so please do contact us in the first instance and we will make every effort to address them.
Changes to the privacy policy
This privacy policy was last updated in January 2024. Our privacy policy is reviewed regularly. You should check this policy occasionally to ensure you are aware of the most recent version.
The data we collect about you
We may collect, use, store and transfer different types of personal data about you as follows:
- Contact and identity data including names, title, postal addresses, email address and telephone numbers
- Professional information such as job titles, previous roles, professional experience and qualifications
- Usage data including information about how you use our website, products and services
- Financial data including bank account and card payment details
- Transaction data including details about payment to and from you and other details of products and services you have purchased from us
- Profile data including your interest, preferences and feedback
How is your data collected?
We use different methods to collect data from and about you including through:
- Direct interactions. You may give us your Identity, Contact and Financial Data by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you, enquire about our or services, ask us to provide our services or become our client, request marketing to be sent to you; or give us feedback or contact us.
- Third parties or publicly available sources. We will receive personal data about you from various third parties and public sources as set out below:
- Contact, Financial and Transaction Data from providers of technical, payment and delivery services.
- Identity and Contact Data from publicly available sources such as Companies House and the Electoral Register.
How we use your personal data
We will only use your personal data when the law allows us to. The law says that the personal data which we hold about you must be:
- Used lawfully, fairly and in a transparent way.
- Collected only for the purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes.
- Relevant to the purposes we have told you about and limited only to those purposes.
- Accurate and kept up to date.
- Kept only as long as necessary for the purposes we have told you about.
- Kept securely.
Most commonly, we will use your personal data in the following circumstances:
- To provide you with information and services that you request from us or which we feel may interest you as permitted under applicable law
- Where we need to perform the contract we are about to enter into or have entered into with you
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests
- To comply with legal and professional obligations
Disclosures of your personal data
We may disclose your information to third parties in the following circumstances:
- We are under a legal, regulatory or professional obligation to do so (for example, to comply with anti-money laundering requirements
- It is relevant in the circumstances to disclose the information to our website and information technology service providers such as hosting, storage fulfilment, disaster recovery ,subject to appropriate technical systems and on a limited use basis only
- If we use a third party service provider to provide services that involve data processing, banking and payment, client contact, data entry and processing, litigiation support, marketing and other similar services
- In order to investigate or respond to or resolve problems or inqurieis or to defend our interests (including, but not limited to, insurers, auditors and other professional advisors)
Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
For how long will we use your data?
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements. By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for up to twelve years after they cease being customers for tax and insurance purposes.
In some circumstances you can ask us to delete your personal data: see your legal rights below for further information. In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
Your consent
By submitting or providing to us your personal data you consent to the use of that information as set out in this privacy policy. You are able to remove your consent at any time by contacting us.
Your legal rights
Under data protection laws in relation to your personal data you have the right to:
- Request access to your personal data. You have the right to ask us for copies of the personal data we hold about you and to check that we are lawfully processing it.
- Request rectification if you think the personal information we hold is inaccurate or incomplete.
- Request erasure of the personal data we hold about you. You have the right to ask us to erase your personal information in certain circumstances. We may not always be able to comply with your request of erasure for legal reasons of which you will be notified, if applicable, at the time of your request.
- Request restriction of processing of your personal data. You have the right to ask us to restrict the processing of your personal information in certain circumstances.
- Object to processing of your personal data. You have the the right to object to the processing of your personal information in certain circumstances.
- Request the transfer of your personal data. You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
If you wish to exercise any of the rights set out above, please contact us. You will not be required to pay a fee for exercising your rights. If you make a legitimate request, we will respond within one month.
Contact
If you would like to contact us to discuss any concerns you have with the way in which we are gathering or using your personal data, please contact us by email at sophie@sgarchitects.co.uk or write to us at 11 North Road, Reigate, Surrey, RH2 8LY.