Contact sales
Contact sales

Privacy Policy

Table of contents

    Introduction

    Grath Consultancy Group Limited (Company number 12072526) (Grath, we, us or our) provides the products and services offered on the https://www.grath.com website. We are registered with the Information Commissioner (No. ZA560416).

    For the purposes of the Data Protection Act 2018 and General Data Protection Regulation (EU) 2016/679 and UK General Data Protection Regulation (UK GDPR) as amended from time to time (“DPA”), we are the data controller of any data we hold that may be used to identify you (“personal data”).

    This statement sets out the categories of personal information we may collect from you when you visit the website (the “Website”) as well as how we processes that personal information. If you have any questions about this statement, please contact Grath at dpo@grath.com

    We have adopted this statement to ensure that we have standards in place to protect the data that we collect about you that is necessary and incidental to

    • providing the products and services that we offer;
    • and the normal day-to-day operations of our business.

    Together with the Grath Master Service Agreement this Privacy Statement it forms part of our agreement with you and determine our responsibilities under the DPA.

    If, at any time, you provide data or other information about someone other than yourself, you warrant that you have that person’s consent to provide such information for the purpose specified. Grath is not available to children (persons under the age of 18 years). If you have any queries about this Privacy Statement or how we use your information, please contact us by email where possible:

    dpo@grath.com
    The Data Controller,
    Grath Consultancy Group Limited
    3rd Floor, 20 Dering St, London, W1S 1AJ

    Information Grath collects

    Personal information you volunteer or which we may infer

    Any domain name information that we collect is not used to personally identify you but is instead aggregated to measure the number of visits, average time spent on the Website, pages viewed. We use this information to measure the use of our Website and to improve its contents. However, additional services may be available if we have certain information about you.

    We may collect the following information:

    • a list of the products and services you express an interest in when you use the Website;
    • your name and contact information, including email address and company details which you may submit to us when you interact with the Website;
    • information regarding your personal or professional interests, demographics, experiences with our products and contact preferences in order to provide you with further correspondence about our products and services.

    Information we collect automatically

    When you use the Website, Grath automatically receives and records information on our server logs from your browser or mobile platform, including your location, IP address, cookie information, and the page you requested. We treat this data as non-personal information, except where we are compelled to do otherwise by law or legal authority.

    Grath only uses this data in aggregate form and we may provide this aggregate information to our partners about how our customers, collectively, use the Website, so that our partners may also understand how users make use of the Website.

    In order to help us provide support to site users, resolve technical issues, as part of our client onboarding records, and to help us generally enhance your client experience.

    We may link to other websites which are not within our control. Once you have left our Website, we are not responsible for the protection and privacy of any information which you provide. You should exercise caution and look at the privacy statement applicable to the third party’s website in question.

    Cookies

    As we mentioned above, we use cookies on our Website. Cookies are files that store information on your hard drive or browser allowing our Website to recognise that you have visited it before. For more information on cookies, see the Privacy and Cookies Section below.

    Why we collect information

    We use your information to provide you with a better service, and in particular for the following reasons:
    • to provide you with services you have requested and notify you about important changes or developments to these services;
    • to respond to your inquiries and/or complaints or process your requests in relation to your information;
    • to follow up as part of our customer care procedures;
    • to update our records about you;
    • for internal record keeping;
    • to contact you for market research purposes and/or administer offers to you;
    • to improve our products and services;
    • for fraud prevention and detection, and to comply with applicable laws and regulations;
    • in relation to competitions and other promotions;
    • to evaluate the effectiveness of our marketing and for research, training and statistical analysis with the aim of improving our services;
    • and to make our Website easier for you to use and to provide you with access to certain parts of the Website.
    Grath processes your personal information for the purposes outlined above where:
    • the processing of your personal information is necessary to perform a contract or enter into a contract with you;
    • the processing of your personal information is necessary for us to comply with legal and regulatory obligations;
    • the processing is necessary to support our legitimate interests in managing our business (or those of a third party) provided such interests are not overridden by your interests and rights.

    Your Right to Object – Please note that you have a right to object to the processing of your personal information where that processing is carried out for our legitimate interests.

    Where required by applicable law, where we send you direct marketing, we will obtain your consent for this, which you may withdraw at any time.

    How long do we keep your information

    We are required to ensure that your personal information is accurate and maintained in a secure environment for a period of time no longer than necessary for the purposes for which we are processing your personal information. We keep personal information collected via the Website in accordance with our Data Retention Policy and in accordance with the timeframes set out in any relevant legislation which applies to the personal information provided to us. However, in some cases we may need to keep personal information for longer (e.g., where we are required to do so in accordance with legal, regulatory, tax or accounting requirements, or dealing with complaints, legal challenges or prospective litigation).

    Sharing your information

    We may disclose your personal information to the following third parties:
    • other companies in the Grath group of companies;
    • selected third parties to provide us with services, including companies that provide us with technical support and assistance in respect of the Website, companies that provide back-office services, companies that provide hosting services or, that track the Website’s activities and analytics, and companies engaged to market and distribute Grath products and/or services;
    • professional advisors, judicial, regulatory and law enforcement bodies;
    • and a third party that acquires all or part of our assets or shares, or that succeeds us in carrying on all or a part of our business, whether by merger, acquisition, reorganisation or otherwise.

    International transfers of your information

    We share your personal data within the Grath Group. This may involve transferring your data outside the UK. Many of our external third parties are based outside the UK so their processing of your personal data will involve a transfer of data outside the UK.

    Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

    • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data.
    • Where we use certain service providers, we may use specific contracts approved for use in the UK which give personal data the same protection it has in the UK.

     Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the UK

    Data security

    We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

     

    We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

    Accessing your personal information

    United Kingdom and Ireland;

    You have a right in certain circumstances to: (i) request access to and rectification or erasure of your personal information; (ii) obtain restriction of processing or to object to processing of your personal information; and (iii) ask for a copy of your personal information to be provided to you, or a third party, in a digital format. If you wish to exercise any of your rights in this regard please contact us using the contact details set out below. You also have the right to lodge a complaint about the processing of your personal information with your local data protection authority.

    How to control and delete cookies

    Grath will not use cookies to collect personally identifiable information about you. However, if you wish to restrict or block the cookies which are set by Grath websites, or indeed any other website, you can do this through your browser settings. The Help function within your browser should tell you how.

    Alternatively, you may wish to visit www.aboutcookies.org which contains comprehensive information on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your machine as well as more general information about cookies. Please be aware that restricting cookies may impact on the functionality of Grath websites. If you wish to view your cookie code, just click on a cookie to open it. You’ll see a short string of text and numbers. The numbers are your identification card, which can only be seen by the server that gave you the cookie.

    For information on how to do this on the browser of your mobile phone you will need to refer to your handset manual.

    Third party cookies

    To support our website we sometimes embed photos and video content from websites such as YouTube and Flickr. As a result, when you visit a page with content embedded from, for example, YouTube or Flickr, you may be presented with cookies from these websites. Grath does not control the dissemination of these cookies. You should check the third party websites for more information.

    Contact us

    dpo@grath.com

    The Data Controller,
    Grath Consultancy Group Limited
    3rd Floor, 20 Dering St, London, W1S 1AJ

    Your request has been submitted successfully
    We will get in touch with you immediately via email.
    Ok, thanks.