Privacy Policy

Baylis & Harding plc - Privacy Policy

This Privacy Policy is provided by Baylis & Harding plc ("Baylis & Harding", "we", "us", or "our"), whose registered office is at Nash Road, Park Farm, Redditch, Worcestershire B98 7AS. We are a 'controller' for the purposes of the Data Protection Act 2018 and the DDPEC (EU Exit) Regulations 2019 (UK GDPR) (collectively the "Data Protection Laws"). This Privacy Policy applies to the personal data we collect in relation to responding to enquiries you send us.

We take your privacy very seriously and ask that you read this Privacy Policy carefully as it contains important information about our processing and your rights.

 

HOW TO CONTACT US

If you would like this Privacy Policy in another format (for example: audio, large print, braille) please contact us at: [email protected]

The latest version of the Privacy Policy can be found here:  https://baylisandharding.com/privacy-policy. We may change this Privacy Policy from time to time.

Current version: August 2020

 

WHAT PERSONAL DATA DO WE COLLECT?

Website Visitors - If you are just browsing our website (baylisandharding.com) we will not collect personal data.

Enquiries – We process personal information about you (such as your name, address, email address and telephone number and anything else that you provide to us) when you contact us to make enquiries so that we can respond to you.

Marketing - If you sign up to receive marketing emails, we will use your name and email address to send you the material you have requested. You can unsubscribe at any time by contacting us at the details set out above or clicking the "unsubscribe" link in the emails that you receive.

Cookies - Performance cookies collect information about how visitors use a platform (for example, what device the user is accessing the platform from). These cookies do not collect information that identifies a user. Any information collected by these cookies is anonymous. You can see more about our Cookies at https://baylisandharding.com/cookie-policy.

 

WHY DO WE PROCESS YOUR PERSONAL DATA, HOW IS IT LAWFUL AND HOW LONG DO WE KEEP IT FOR?

Enquiries - The legal basis we rely on for these purposes is for our legitimate interests i.e. we have good, sensible, practical reasons for processing your personal data which is in our interest. In this case, we use your personal data to respond to your enquiries. We have considered the impact on your interests and rights and have placed appropriate safeguards to ensure that the intrusion on your privacy is reduced as much as possible. You can object to any of the processing that we carry out on the grounds of legitimate interests (see the section “Your Rights” to find out how).

Marketing – You may be given a choice to sign up to marketing emails. We therefore rely on your consent when sending you marketing materials.

 

HOW LONG DO WE KEEP YOUR PERSONAL DATA FOR?

Enquiries – We keep your personal data for 12 months after you have made your booking or resolved your enquiry.

Marketing - We keep your personal data until you tell us that you no longer wish to receive the marketing material.

 

WHO WILL HAVE ACCESS TO YOUR PERSONAL DATA?

We do not transfer your personal data outside the UK and the European Economic Area.

We strive to implement appropriate technical and organisational measures in order to protect your personal data against accidental or unlawful destruction, accidental loss or alteration, unauthorised disclosure or access and any other unlawful forms of processing. We aim to ensure that the level of security and the measures adopted to protect your personal data are appropriate for the risks presented by the nature and use of your personal data. We follow recognised industry practices for protecting our IT environment and physical facilities.

 

YOUR RIGHTS

As a data subject, you have the following rights under the Data Protection Laws:

  • Right to object to processing of your personal data;
  • Right of access to personal data relating to you;
  • Right to correct any mistakes in your information;
  • Right to prevent your personal data being processed;
  • Right to have your personal data ported to another controller; and
  • Right to erasure.

Some of these rights are qualified and do not apply in certain circumstances.

Rights in relation to automated decision making do not apply as we do not carry out any automated decision making.

To exercise your rights, contact us using the details given in the 'How to Contact Us' section.

If you do not think that we have processed their data in accordance with this notice, you should let us know as soon as possible. You can also complain to the ICO, the UK data protection regulator. Information about how to do this is available on its website at www.ico.org.uk.

 

Cookie Policy

Baylis & Harding plc – Cookie Policy

Baylis & Harding plc ("Baylis & Harding", "we", "us", or "our") uses cookies on our website (baylisandharding.com) (the "Website"), which amongst other things, help us to improve your experience of our Website and to ensure that it performs as you expect it to. Cookies are text files containing small amounts of information, which are downloaded to your computer or mobile device by websites that you visit.

Websites must get consent to send cookies to your computer or mobile device unless the cookies are strictly necessary to provide services to you.

You can set your cookie preferences when you arrive at our Website, or change them at any time by clicking here: https://baylisandharding.com/privacy-policy.

Unless the cookie is a strictly necessary cookie, you can withdraw your consent to our cookies at any time even if you have previously consented.

The table below explains what cookies we use on our Website, why we use them and whether they are strictly necessary or another type of cookie e.g. "functionality" or "performance" cookies. We also state in the table whether a cookie is a "persistent" or "session" cookie. The difference is that:

  • Persistent cookies remain on your device between browsing sessions. They are activated each time you visit the Website that created that particular cookie. For example, where a "persistent cookie" is used on a platform to remember your log-in details, you will not need to enter those details each time you visit that platform.
  • Session cookies allow platform operators to link the actions of a user during a browser session. A browser session starts when you open the Website and finishes when you close the Website window. Session cookies are created temporarily. Once you close the Website, all session cookies are deleted.

Some of the cookies listed below are those set by our own Website.

Performance

Performance cookies collect information about how visitors use a platform (for example, what device the user is accessing the platform from). These cookies do not collect information that identifies a user. Any information collected by these cookies is anonymous. We only use such information to improve our website.

Cookie

Name

Purpose

Persistent/ Session

Google Analytics

_ga
_gid
_gat
AMP_TOKEN
_gac_<property-id>

_ga: Used to distinguish users.

_gid: Used to distinguish users.

_gat: Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_<property-id>

AMP_TOKEN: Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.

_gac_<property-id>: Contains campaign related information for the user. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out. Learn more.

2 years
24 hours
1 minute
30 seconds to 1 year
90 days

Matomo

_pk_id
_pk_ref
_pk_ses
mtm_consent

_pk_id: used to store a few details about the user such as the unique visitor ID

_pk_ref: used to store the attribution information, the referrer initially used to visit the website

_pk_ses: short lived cookies used to temporarily store data for the visit

mtm_consent is created with no expiry date to forever remember that consent was given by the user.

13 months
6 months
30 mins
no expiry

 

 

Prize Draw Privacy Policy

BAYLIS & HARDING PRIZE DRAW PRIVACY NOTICE

This Prize Draw Privacy Notice is provided by Baylis & Harding plc ("Baylis & Harding", "we", "us", or "our"), whose registered office is at Nash Road, Park Farm, Redditch, Worcestershire, B98 7AS, in our capacity as organiser of any Baylis & Harding Prize Draw ("Prize Draw"). We are a 'controller' for the purposes of the Data Protection Act 2018 and the DDPEC (EU Exit) Regulations 2019 (UK GDPR) (collectively the "Data Protection Laws"). This Privacy Policy applies to the personal data we collect in relation to responding to enquiries you send us.We understand that the security of your personal data is extremely important, and we are committed to respecting your privacy and safeguarding your personal data. This Prize Draw Privacy Notice, together with our main Privacy Policy (which can be found at https://baylisandharding.com/privacy-policy containing more information about how we process your personal data and your rights under the Data Protection Laws), applies to you if you participate in our Prize Draw. Separately, the terms and conditions of the Prize Draw can be found at https://baylisandharding.com ("Prize Draw T&Cs").

The details of our processing of your personal data for the Prize Draw are as below:

• We collect and process your name and email address in order to register your entry in our Prize Draw.

• We are permitted to process your personal data on the basis that it is necessary for our performance of the contract you have agreed to enter with us (i.e. the Prize Draw T&Cs). If you do not provide your information to us, we will not be able to register your entry in our Prize Draw.

• If you are selected as the winner of the Prize Draw, we will contact you to notify you of this, ask you to confirm acceptance of the prize and verify your eligibility (e.g. confirm that you are over 18 years old) in line with our Prize Draw T&Cs. After completing this process, we may require the location of your home address (city or country) because we are obliged to make the winner's name and location (city or county) to people requesting that information in accordance with the Prize Draw T&Cs and to comply with the requirements under the UK Code of Non-broadcast Advertising and Direct & Promotional Marketing (the "CAP Code"). As provided in the CAP Code, the winner can object to us publishing or making available the name or reduce the amount of information published or made available. In order to contact us on this, please email us at [email protected]. Please note that this does not affect our obligation to provide the relevant information and the winning entry to the Advertising Standards Authority, the UK's regulator of advertising, if required to do so.

• If you are not selected as the winner of the Prize Draw, we will delete your personal data collected for the Prize Draw within the period of one month following the completion of delivery of the prize to the winner (or if there are any relevant complaints or issues relating to the Prize Draw and if later, promptly following the resolution of those complaints or issues). If you are the winner of the Prize Draw, we will retain your personal data until 6 months after the completion of delivery of the prize and any related publicity activities. After this date your personal data will be deleted.

• We use external providers that process your personal data for this Prize Draw as part of the services (such as hosting) which they offer to us. We take steps to ensure that our service providers process your data in accordance with the Data Protection Laws, only use it in accordance with our contract with them and keep it secure. If you would like more information about our processors, please contact us at [email protected]

• We do not transfer your personal data outside the UK and the European Economic Area.

• We strive to implement appropriate technical and organisational measures in order to protect your personal data against accidental or unlawful destruction, accidental loss or alteration, unauthorised disclosure or access and any other unlawful forms of processing. We aim to ensure that the level of security and the measures adopted to protect your personal data are appropriate for the risks presented by the nature and use of your personal data. We follow recognised industry practices for protecting our IT environment and physical facilities.