DSM Demolition Ltd is strongly committed to protecting personal data. This privacy statement describes why and how we collect and use personal data and provides information about individuals’ rights. It applies to personal data provided to us, both by individuals themselves or by others. We may use personal data provided to us by clients, purchases, subcontractors also from the public and employees.
Personal data is any information relating to an identified or identifiable living person. DSM processes personal data for numerous purposes, and the means of collection, lawful basis of processing, use, disclosure, and retention periods for each purpose may differ.
When collecting and using personal data, our policy is to be clear about why and how we process personal data.
Full details of our Privacy Policy can be fought on our website.
Our Activities.
- Decommissioning
- Demolition
- Decontamination
- Remediation
- Other Services
Security
We take the security of all the data we hold very seriously and secure data via software systems, we review our procedures on security and update password protections. We operate an Information Management System (IMS), which provides measures and guidance in respect of information and document control. The IMS regularly reviews the appropriateness of the measures we have in place to keep the data we hold secure.
Sharing Data with Third Party.
We will only share personal data with others when appropriate to do so, in accordance with the determined legal basis for processing and when we are legally permitted to do so. When data is shared with others, we ensure both contractual arrangements and security mechanisms are in place to protect the data and to comply with GDRP regulations.
As a result, personal data may be shared with third parties, we don’t provide any information internationally or with businesses outside of the EU. Our policy statement would be amended if circumstances changed.
- Law enforcement or other government and regulatory agencies or to other third parties as required by, and in accordance with, applicable law or regulation
Occasionally, we may receive requests from third parties with authority to obtain disclosure of personal data, such as to check that we are complying with applicable law and regulation, to investigate an alleged crime, to establish, exercise or defend legal rights. We will only fulfil requests for personal data where we are permitted to do so in accordance with applicable law or regulation Examples of these are Councils, HMRC, Pension regulations and HSE. - Third party organisations that provide Training, Health & Safety requirements
We use third parties to support us in providing our business activities and making sure we provide training and medical support & advise under the HSE regulations. - HR Recourses
We share employee information with our out-sourced HR provider for creating, implementing and/or overseeing policies governing employee behaviour and the behaviour of the company toward its employees.
- IT Providers
Information technology, cloud-based software and IT service providers, identity management, website hosting and management, data analysis, data back-up, security and storage services. The servers powering and facilitating the cloud infrastructure are located in secure data at Rockit, and personal data may be stored in any one of them.
- Auditors and other professional advisers
- Clients on tendering
We provide information relating to our resources to potential clients via tendering portals for tendering for contracts and tender lists.
Retention Period
We understand our legal duty to retain accurate data and the need to retain personal data for only as long as is necessary in fulfilment of our legitimate business interests and that you are happy for us to do so. Accordingly, we have a data retention policy and run data routines to remove data that we no longer have a legitimate business interest in maintaining.
Data is segregated and held for different time periods. The criteria we use to determine whether there is a requirement to retain your personal data includes:
- the nature of the personal data;
- its perceived accuracy;
- our regulatory and legal obligations;
More details of our retention period are included in our full Privacy Policy.
Changes to this privacy statement
We recognise that transparency is an ongoing responsibility, so we will keep this privacy statement under regular review.
Data controller and contact information
The data controller is DSM Demolition Ltd (the limited registered in England under registration no. 2266325 and with its registration address at Arden House, Arden Road, Birmingham, B8 1DE).
If you have any questions about this privacy statement or how and why we process personal data, please contact us at:
DSM Demolition Ltd
Arden House
Arden Road
Birmingham
B81 1DE
Email: gdpr@www.dsmgroup.info
Phone: 0121 322 2225
Individuals’ rights
Individuals have certain rights over their personal data and data controllers are responsible for fulfilling these rights. As the data controller we determine how and why personal data is processed. Further information about the rights that individuals have and how to exercise them below.
Access to personal data
You have a right of access to personal data held by us as a data controller. This right may be exercised by emailing us at gdpr@www.dsmgroup.info. We may charge for a request for access in accordance with applicable law. We will aim to respond to any requests for information promptly, and in any event within the legally required time limits (currently 30 days).
Amendment of personal data
To update personal data submitted to us, you may email us at gdpr@www.dsmgroup.info or, where appropriate, contact us via the relevant website registration page or by amending the personal details held on relevant applications with which you registered.
When practically possible, we will make corrections (where appropriate) based on your updated information.
Withdrawal of consent
Where we process personal data based on consent, individuals have a right to withdraw consent at any time. In specific instances where personal data is processed by ”consent”. To withdraw consent to our processing of your personal data please email us at gdpr@www.dsmgroup.info
Other data subject rights
This privacy statement is intended to provide information about what personal data we collect about you and how it is used. As well as rights of access and amendment referred to above, individuals may have other rights in relation to the personal data we hold, such as a right to erasure/deletion, to restrict or object to our processing of personal data and the right to data portability. Some of these rights will only be available from 25 May 2018. Further details of our Privacy Statement can be found in our Privacy Policy on our website.
If you wish to exercise any of these rights, please send an email to gdpr@www.dsmgroup.info