Policy Documentation, Information Security, Data Protection & Governance Specialists
Home Document Shop Using our Templates Terms & Conditions Privacy Policy Contact​
​
Our Privacy Policy will help you understand what information we collect and process using this Northdown Systems website, how we use it, and what choices you have about your personal data. When we refer to “Northdown Systems” within this Privacy Policy, we are referring to Northdown Systems Limited of 50 Princes Street, Ipswich, Suffolk IP1 1RJ, the company which provides this website, and any services or features which may be made available to you from this website. "ISO Breeze" is a trading style of Northdown Systems Ltd.
Data Protection Framework
Northdown Systems is based in the United Kingdom and is registered with the Information Commissioner’s Office (ICO) as a Data Controller under the UK Data Protection Act of 2018. We have also aligned our Privacy Policy with the EU General Data Protection Regulation 2016/679 (GDPR), which came into effect on 25 May 2018 under the supervision of the ICO within the UK. Northdown Systems has completed applicable Privacy Impact Assessments (also known as Data Protection Impact Assessments under GDPR) for activities related to this website, which are available from the Data Protection Officer (see Section 9).
1. Customer and Citizen Data
You may decide to send us your personal information via this website if you are seeking more information, requesting to attend one of our events, or for other similar purposes. Your decision to disclose your personal data is entirely voluntary, and by doing so, you are providing us with specific consent to use your personal data only for the purposes for which you have disclosed it to us.
Northdown Systems may access and use your Customer Data only for the purposes for which you have submitted it to us to (a) provide information to you, (b) make contact with you, (c) provide services to you, or (d) maintain the operations and security of the website and services we provide to you. We will not use your personal information for any other purposes, for example, the communication of marketing material, unless we have your specific consent to do so.
We will at all times handle and store your personal data in accordance with industry best practice aligned with ISO 27001, the international standard for information security. This includes the activities and procedures undertaken by our own personnel and any authorised third parties (see Section 5), and the technical controls which we have implemented to prevent unauthorised access, compromise or theft of information from our applications, supporting computer systems and premises.
2. Sensitive Personal Data
GDPR specifies a set of personal data categories considered “sensitive” and requiring special consideration by data controllers. This website, and any services available from this website, do not knowingly collect or process any sensitive personal data, and supporting Privacy Impact Assessments (also known as Data Protection Impact Assessments under GDPR) are available upon request from our Data Protection Officer (see Section 9).
3. Children’s Personal Data
This website, and any services available from this website, are not directed to children under the age of 13. If you learn that a child under the age of 13 has provided us with their personal information without having parental consent, don't hesitate to get in touch with our Data Protection Officer (see Section 9) immediately so that we can take appropriate action.
4. Customer and Citizen Data Rights
As prescribed within data protection regulations, you have several rights connected to providing your personal data to Northdown Systems using this website. These include your rights to request that we:
-
confirm to you what personal data we may hold about you, if any, and for what purposes
-
change the consent which you have provided in relation to your personal data
-
correct any inaccurate or incomplete personal data which we may be holding about you
-
provide you with a complete copy of your personal data for you to move elsewhere
-
stop processing your personal data whilst we are resolving an objection from you
-
permanently erase all your personal data promptly, and confirm to you that we have done so (there may be reasons why we may be unable to do this)
To contact us, please see Section 9 below. If Northdown Systems does not address your request, or fails to provide you with a valid reason why it is unable to do so, you have the right to contact the Information Commissioner’s Office to make a complaint. They can be contacted via their website (www.ico.org.uk) or by telephone 0303 123 1113.
5. Declaration of Sub-Processing
To make an informed decision about whether to provide your personal data to Northdown Systems using this website, we need to inform you of any organisations that act as Data Processors for us in providing our services. If you purchase any of our documentation templates, then your payment details will be processed by Wix Payments, Apple Pay, Google Pay or PayPal depending upon how you choose to make your payment. The respective privacy policies are as follows:
​
-
Wix Payments: https://www.wix.com/about/privacy
-
Apple Pay: https://www.apple.com/legal/privacy/data/en/apple-pay/
-
Google Pay: https://policies.google.com/privacy?hl=en
-
Paypal: https://www.paypal.com/us/legalhub/paypal/privacy-full
6. Website Cookies
This website (which is hosted by Wix) uses cookies to record log data. We use both session-based and persistent cookies, dependent upon how you use or interact with this website. Cookies are small text files sent by us to your computer, or from your computer or mobile device to us each time you visit our website. They are unique to you or your web browser. Session-based cookies last only while your browser is open and are automatically deleted when you close your browser. Persistent cookies last until you or your browser delete them, or until they expire. We use cookies which are not specific to your account but are unique and allow us to undertake website analytics and customization, among other similar things. If you decide to disable some or all cookies, you may not be able to use some of the functions on our website. We may use third-party cookies, for example Google Analytics, and you may choose to opt-out of third party cookies from their website.
7. External Links
This website may include relevant hyperlinks to external websites not controlled by Northdown Systems. Whilst all reasonable care has been exercised in selecting and providing any such links, you are advised to exercise caution before clicking any external links. We cannot guarantee the ongoing suitability of external links, nor do we continually verify the safety or security of the contents which may be provided to you. You are advised, therefore, that your use of external links is at your own risk and we cannot be responsible for any damages or consequences caused by your use of them.
8. Changes to this Privacy Policy
We may change this Northdown Systems Privacy Policy from time to time, and if we do, we will post any changes on this page. If you continue to access this website or use services available from this website after those changes have come into effect, you will have agreed to the revised policy.
9. Contacting Northdown Systems
If you have any questions about this Privacy Policy, would like to exercise any of your statutory rights, or to make a complaint, please email Northdown System's Data Protection Officer at info@northdownsystems.co.uk​​
Privacy Policy
