Privacy policy

We respect your privacy and understand that privacy is important to you and that you care about how information about you is used, so this privacy notice sets out details about what data we collect and how we use it.

ABOUT US

Golden Catalyst is a Dorset based business helping businesses and individuals to create more positive working relationships by putting people in their element.

HOW TO CONTACT US

If you have any questions about how we collect and use your information not covered in this privacy notice, or if you wish to speak to someone about our approach to data protection and privacy, please contact

Yvonne Guerineau via email: yvonne@goldencatalyst.co.uk

Data we collect and process

VISITORS TO OUR WEBSITE

Where we collect personal data via our website, we will be upfront about it and it will be obvious to you that you’re providing personal data and how we will be using it.

Cookies

We use cookies and similar technologies to track the activity on our websites. Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device.

The Cookies in use are those used by Squarespace (our website hosting provider). You can find out more about Squarespace cookies here: https://support.squarespace.com/hc/en-us/articles/360001264507

We have no control over these cookies, but you can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some elements of our website.

Analytics

When someone visits our website (https://www.goldencatalysr.co.uk/) we make use of the Squarespace Analytics service to collect standard information about visitors to the sites and their behaviour (e.g. what pages they viewed). The data provided is anonymised and in no way enables us to identify individual visitors, however, Squarespace will place a cookie on your device to enable the service. For more information about how Squarespace cookies work on websites: https://support.squarespace.com/hc/en-us/articles/360001264507

Security of data collected and processed via our website

We take security of your data seriously. As such, any data you submit on the website (e.g. via our contact form) will be submitted using encryption, as we have SSL (https) set up on our website.

PEOPLE WHO RECEIVE OUR NEWSLETTERS

If you receive our email newsletter, this means you have either chosen to subscribe, or you are an existing client, and we are relying on the soft opt-in legitimate interest to add you to our list and to keep you updated on our services. We use MPZ to manage this email list, so you will see an unsubscribe link which you can use at any time, should you no longer wish to receive our emails.

IF YOU CONTACT US

Generally, depending on what you contact us for, we will store your details (email, name, business name, address, and other relevant information) within our customer management system.

Online forms

If you fill out one of our website forms (e.g. https://www.goldencatalyst.co.uk/getintouch) a notification email is sent to us with the information you completed on the form. No copy of the data you submit is stored anywhere else. As our site uses SSL (https) the data you submit using the contact form will be encrypted once you press the “Submit” button

People who contact us via email

If you send us an email, we will maintain your email within our email system and within our email clients running on our business devices.

Via of social media

If you contact us via one of our social media channels, we may interact with you directly via the social media network, or ask you to send us an email, in which case your enquiry will be dealt with in the same way as other emails we receive.

CLIENT DATA

If you become a client (or are interested in using our services) we will collect the minimal amount of information from you (your name, job title, email, phone number) and will maintain this information, along with any relevant notes within our customer management system.

Likewise, if you ask us to work with your employees, we will collect their information for the purposes of delivering the service. This may include their name, email, phone and some basic (non-sensitive) HR related data. This too will be stored, along with any notes we take within our customer management system.

TRAINING COURSE USERS

If you sign-up (on Thinkific) to carry out one of our training modules, all your data for the purposes of Thinkific to deliver the training to you, will be stored within Thinkific.

SUPPLIER OR CONTRACTOR DATA

If you are one of our suppliers, we will collect the minimal information about you and your services as required to make use of your services and deal with invoices and payments for your services. Such information will be stored within our accounting package for the purposes of our accounts and will be retained accordingly.

We may also retain your contact details within our email application or via business cards that you may provide to us.

Retention of personal data

Unless stated elsewhere in this document or in our terms of services we only store the data necessary to provide the services we provide to you. We will keep this data for as long as it is lawful for us to do so (this may be for as long as you are a customer or because of a legal obligation to retain the information, whichever is the longest).

Third party processors

We use a number of third-party cloud-based services for the purposes of effectively running our business and providing our services to you. We also use a number of third-party organisations, e.g. IT support.

In all cases where we are using a third-party service or company, we will only provide the minimal amount of information for the purposes of delivering the service to us and to meet our requirements.

We always carry out due diligence against all our third-party suppliers for the purposes of ensuring their compliance with data protection, maintaining adequate security of your data and ensuring they apply adequate data protection principles to the processing of the data we supply. We also make sure a legally binding contract (sometimes called a Data Processing Agreement or DPA) is also in place to protect your data.

Your rights

Under current data protection legislation in the UK, you have rights as an individual which you can exercise in relation to the data we store and process about you. You can find more information about your rights on the Information Commissioner’s website: https://ico.org.uk/for-the-public/

If you would like to exercise your rights, or if you have any questions, please use the following contact details: yvonne@goldencatalyst.co.uk

HOW TO WITHDRAW CONSENT AND OBJECT TO PROCESSING

Where we are processing your data and needed to ask your permission to do so, you are able to withdraw your consent at any time. If you wish to stop receiving our marketing emails you can do so, by clicking on the “unsubscribe” link at the bottom or the email or by contacting us.

You should also contact us, if you wish to raise concerns about the way we are processing your data or would like to raise an objection to the processing.

KEEPING YOUR DATA UP TO DATE

It is important that any of your data that we process is kept up to date. We will from time to time ask you to verify your contact details but if you wish to update any information we hold about you, please contact us with your updated details.

ERASURE OF YOUR DATA (THE “RIGHT TO BE FORGOTTEN”)

Under some circumstances you may request us to delete your data from our systems. Where this is possible (e.g. we don’t have any legal purpose for continuing to process your data) we will erase it from our systems. If it’s not possible for us to delete your data, we will explain the reasons why.

PORTABILITY

Your right to portability allows you to request a machine-readable format of the data you supplied to us and associated service logs (where we store them).

ACCESS TO YOUR DATA (A SO-CALLED DATA SUBJECT ACCESS REQUEST)

You have the right to ask us about what data we hold about you, how we process it and to ask us to provide you with a copy of the information, free of charge and within one calendar month of your request.

To make a request for any personal information we hold and process about you, we would prefer it if you could put it in writing or in an email to the addresses above. We will need to verify your identity before providing the information and where necessary may contact you further to ensure we understand what data you are requesting.

AUTOMATED DECISION MAKING AND PROFILING

We do not carry out any automated decision-making process or carry out profiling, other than the insights report which is carried out by a third-party for the purposes of aiding us with our own services delivered to you as an individual.

Sharing your information

We do not share any personal data with any third parties unless it is lawful for us to do so, if required by law to do so or if you provide us with permission to do so.

Complaints

If you feel this privacy notice does not go far enough in explaining how we have used your personal data, we are happy to provide any additional information or explanation needed. Any requests for this should be sent to yvonne@goldencatalyst.co.uk

If you want to make a complaint about the way we have processed your personal information, we’d rather you brought it to us in the first instance, but of course you can contact the Information Commissioner’s Office in their capacity as the statutory body that oversees data protection law in the UK – https://ico.org.uk/make-a-complaint/

More information

For more information about your data rights and privacy or data protection in general visit the Information Commissioner’s Office website: https://ico.org.uk

Changes to our privacy notice

We may change or update elements of this privacy notice from time to time or as required by law. The most current version of our privacy notice is available here on our website.