Data Protection

Name: One Agency
Price range: $

Your Safety is Our Top Priority.

What is GDPR?

The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR).

One Resource Data Protection policy (the “Data Protection”) is all about letting you know that as our customers/stakeholders/users we take the protection and management of your personal information very seriously. As a UK based registered limited company our handling of your information is controlled by the UK Data Protection Act 2018. We therefore take great care to protect your personal information or anything which might identify you personally such as:

Understanding GDPR Policy

Who is Affected by GDPR?

The GDPR imposes new rules on companies, government agencies, non-profits, and other organizations that offer any goods and services to people in the European Union, or that collect and analyze data tied to European data subjects.

How we have been preparing for GDPR?

At One Resource we are committed to maintaining an effective security and privacy program. We recently updated our privacy policy and terms of use to meet the standard of GDPR and to reflect further transparency around our uses of user data. We are committed to ensuring our clients, suppliers and partners have the highest confidence in our data protection practices and see GDPR as an opportunity to strengthen this commitment.

The information we collect about you?

When you do business with us, become a client of our company, register for or attend any events or subscribe to our newsletters, or register an interest in any job vacancies with us, we collect some or all of the following personal information from you:

Date of Birth.
Postal address, email address and telephone number.
Any information relevant to the matter upon which we may be instructed.
If you choose to submit a job or work experience placement application we will collect and hold the information that you provide in that application.
Occasionally we may receive information about you from other sources which we will add to the information which we already hold about you in order to help us provide the required services or comply with our legal and regulatory obligations, in particular regarding anti-money laundering.
IP addresses (internet protocol addresses) of visitors are logged for administration purposes. The IP address indicates the location of your computer on the Internet. This information may be used to provide statistical information about the users of our site. No individual user is identifiable from such information. Its purpose is to try to ensure that our site reflects the needs of our users.
IP addresses may be used to track your session. We may use Cookies in our websites and apps. One Resource Ltd. may at certain times do require you to register to access any part of our website or application.
We do not collect sensitive information except where legally required as part of the recruitment process. Sensitive information includes data relating to race or ethnic origin, political opinions, religious or other similar beliefs, trade union membership, physical or mental health, sexual life or criminal records.

The purposes for which we intend to process personal data?

We intend to process personal data for the following purposes:

To enable us to supply contracted professional services to you as our client.
To comply with statutory and/or regulatory obligations under relevant laws in force from time to time (e.g. the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (“MLR 2017”).
To enable us to invoice you for our services and investigate/address any attendant fee disputes that may have arisen.
To contact you about other services we provide which may be of interest to you if you have consented to us doing so.
To monitor and improve the quality of services that we provide to you.
To maintain our records for administrative purposes.

Persons/organisations
to whom we may give personal data.

We may share your personal data with:

HMRC.
Any third parties with whom you require or permit us to correspond.
Subcontractors.
An alternate appointed by us in the event of incapacity or death.
Tax insurance providers.
Professional indemnity insurers.

If the law allows or requires us to do so, we may share your personal data with:

The police and law enforcement agencies.
Courts and tribunals.
The information commissioner’s office (“ico”)..
We may need to share your personal data with the third parties identified above in order to comply with our legal obligations, including our legal obligations to you. If you ask us not to share your personal data with such third parties we may need to cease to act..

Email Privacy.

We follow email marketing best practices at all time. A key aspect of these best practices is the operation of permission based emailing. If you receive emails from One Resource or a partner it will be because you have elected to receive such emails or they are communications related specifically to services requested.

Outbound links.

One Resource website and application contain links to other websites. While links are reviewed at the time of publishing we are not responsible for the content of external links as they can be changed without our knowledge.

Retention of personal data.

When acting as a data controller and in accordance with recognized good practice within the industry, we will retain all of our records relating to you as follows:

Where we have an ongoing client relationship, data which is needed for more than one year’s is retained throughout the period of the relationship, but will be deleted six years after the end of the business relationship unless you as our client ask us to retain it for a longer period.
Our contractual terms provide for the destruction of documents after six years and therefore agreement to the contractual terms is taken as agreement to the retention of records for this period, and to their destruction thereafter.
You are responsible for retaining information that we send to you and this will be supplied in the form agreed between us. Where we act as a data processor as defined in DPA 2018, we will delete or return all personal data to the data controller as agreed with the controller at the termination of the contract.

Protection of personal data we hold about you.

We have put in place various security measures, both technical and organisational, to protect your personal data from loss, misuse, alternation or destruction. Our security and privacy policies are regularly reviewed. All One Resource Ltd. employees have signed a confidentiality agreement and only authorised persons will have access to your personal data on the need only basis.

Your Rights.

You have various rights in respect of the personal information One Resource holds about you – these are set out in more detail below. If you wish to exercise any of these rights, you can do so by contacting One Resource Please note that you will need to provide One Resource with evidence of your identity.

Request access to your personal information: You can ask One Resource to give you a copy of the personal information that we hold about you.
Request correction: You can ask One Resource to change or complete any inaccurate or incomplete personal information held about you.
Request erasure: You can ask One Resource to delete your personal information where it is no longer necessary for One Resource to use it, you have withdrawn consent, or where One Resource has no lawful basis for keeping it.
Right to object: You can object to One Resource processing of your personal information where One Resource is relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where One Resource is processing your personal information for direct marketing purposes.
Request restriction: You can ask One Resource to restrict our use of your personal information in the following circumstances: (a) if you want us to establish the data’s accuracy; (b) where One Resource’s use of the data is unlawful but you do not want One Resource to erase it; (c) where you need One Resource to hold the data even if One Resource no longer require it as you need it to establish, exercise or defend legal claims; or (d) if you have objected to our use of your data but One Resource needs to verify whether One Resource has overriding legitimate grounds to use it.
Request transfer: You can ask us to provide you or a third party with some of the personal information that One Resource holds about you in a structured, commonly used, electronic form, so it can be easily transferred.
Withdraw consent: If you have given One Resource your consent to use personal information (for example, for marketing), you can withdraw your consent at any time. You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, One Resource may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. One Resource tries to respond to all legitimate requests within one month. Occasionally it may take One Resource longer than a month if your request is particularly complex or you have made a number of requests. In this case, One Resource will notify you and keep you updated.

Policy Changes.

One Resource reserves the right to change its privacy policies at any time. Up to date policies are always available on our website. This Privacy Policy forms part of a legal agreement between you and One Resource Ltd. By using our website, you hereby consent to our Privacy Policy and agree to its terms.

Complaints.

If you have requested details of the information we hold about you and you are not happy with our response, or you think we have not complied with the GDPR or DPA 2018 in some other way, you can complain to us. Please send any complaints by mail, phone or email.

Got a Question?

If you need further information about our data protection please feel free to contact us.