PRS Yorkshire Ltd – Privacy Notice

1. Who we are

PRS Yorkshire Ltd are the data controller for the personal data we collect. Registered address: Fairfax House, 6a Mill Field Road, Cottingley Business Park, Bingley, BD16 1PY Contact email: louise.charnley@prsprinters.co.uk Telephone: 01274 653283

If you have any questions about this notice or how we handle your data, please contact our Data Protection Officer (Louise Charnley): Email: louise.charnley@prsprinters.co.uk Telephone: 01274 653283

 

2. The personal data we collect

We may collect and process the following types of personal data:

· Identity data: name, title, date of birth

· Contact data: email address, telephone number, postal address

· Usage data: information about how you use our website or services

· Technical data: IP address, browser type, cookie identifiers

· Transaction data: payment information, purchase history

 

3. How we collect your personal data

We collect data in the following ways:

· Directly from you (forms, emails, phone calls, registrations)

· From third parties (e.g., payment processors, service providers, publicly available sources)

 

4. Our lawful bases for processing

We process your personal data under one or more of the following lawful bases:

· Consent — when you have given clear consent for specific processing

· Contract — to provide services or perform a contract you have entered into with us

· Legal obligation — where we must comply with a legal requirement

· Legitimate interests — for purposes necessary to run our organisation, unless overridden by your rights

· Vital interests — in rare cases where we need to protect someone’s life

 

5. How we use your personal data

We use your data to:

· Provide and manage our services

· Process orders and payments

· Communicate with you (e.g., service messages, support)

· Send marketing communications (only with consent or if legally permitted)

· Improve our website and services

· Maintain security and prevent fraud

 

6. Sharing your data

We may share your data with:

· Service providers (IT, payment processors, cloud hosting)

· Professional advisers (lawyers, accountants)

· Regulators or authorities (where legally required)

We ensure all third parties comply with GDPR obligations through contracts and safeguards.

 

7. International data transfers

If we transfer your data outside the UK or EEA, we ensure appropriate safeguards, such as:

· An adequacy decision

· ICO-approved International Data Transfer Agreement (IDTA)

· Standard Contractual Clauses (SCCs)

 

8. Data retention

We keep your personal data only for as long as necessary to fulfil the purposes we collected it for, including legal, accounting, or reporting requirements. Retention periods:

 

· Customer account data for 7 years

· Payment records for 7 years

 

9. Your data protection rights

Under UK GDPR, you have the right to:

· Access your data

· Correct inaccurate or incomplete data

· Request deletion (“right to be forgotten”)

· Restrict processing

· Object to processing (including direct marketing)

· Data portability

· Withdraw consent at any time

· Lodge a complaint with the ICO

ICO contact details: Information Commissioner’s Office Website: ico.org.uk Helpline: 0303 123 1113

 

10. Automated decision-making

If we use automated decision-making or profiling, we will explain how it works, its significance, and your rights. If not applicable:

We do not carry out automated decision-making that has legal or significant effects.

 

11. How we protect your data

We implement technical and organisational measures to protect your data, including:

· Encryption

· Access controls

· Secure servers

· Staff training

· Regular audits

 

 

 

12. Changes to this Privacy Notice

We may update this notice occasionally. The latest version will always be available on our website. If we make significant changes, we will notify you directly where appropriate.