Introduction
This privacy statement describes how and why Pulse Accountants Ltd t/a RMCA|Chartered Accountants (“RMCA” or “we” or “us”) collects and uses personal data (i.e. data relating to an identified or identifiable individual) in the course of its business. It applies to personal data provided directly to us by the individuals concerned and to personal data provided to us by companies and other organisations.
We are committed to the protection of personal data and to fair and transparent processing. If you have any questions about this Privacy Notice, you can contact our Data Protection Officer via email at info@rmca.co.uk.
To find out more about how and why we process personal data, please refer to the relevant section of this Privacy Notice.
Data controller
Pulse Accountants Ltd t/a RMCA|Chartered Accountants is a limited company registered in England with number 06665856 with a registered address of The Counting House, 9 High Street, Tring, Hertfordshire HP23 5TE and is registered as a data controller under registration number Z1533488.
Security of personal data
We have policies, procedures and training in place in respect of data protection, confidentiality and information security. We regularly review such measures with the objective of ensuring their continuing effectiveness. The privacy notice was last updated on 21 May 2018.
International transfers of personal data
In the course of running our business and providing services to clients we may transfer personal data to third parties located in other countries, including countries outside the EEA. Where we transfer personal data to a country not determined by the European Commission to provide an adequate level of protection for personal data, we will only do so under a form of agreement approved by the European Commission, such as the Standard Contractual Clauses.
Provision of personal data to third parties
We will only share personal data with third parties where we are legally permitted to do so. We do not provide information to third parties for their own marketing purposes and we do not undertake mailings for third parties. Where we transfer personal data to third parties, we will put in place appropriate contractual arrangements and seek to ensure that there are appropriate technical and organisational measures in place to protect personal data.
We may provide personal data to:
Your Rights
You have rights in relation to any of your personal data held by us as a data controller. Should you wish to exercise your rights, please contact our Data Protection Officer via email at info@rmca.co.uk. We will endeavour to respond to any request promptly and within any legally required time limit.
You also have a right to update your personal data that we hold. To do so, please contact us at karen@rmca.co.uk. Where we process your personal data based on your consent, you have a right to withdraw consent at any time. Should you wish to do so, please contact our Data Protection Officer via email at info@rmca.co.uk.
Finally, in addition to the rights above, you may also have other rights in relation to personal data, including a right to erasure/deletion, the right to data portability and the right to restrict and/or object to our processing of personal data.
Complaints
Should you wish to complain about our use of your personal data, please contact our Data Protection Officer via email at david@rmca.co.uk. We will investigate all complaints received and will endeavour to respond to complaints promptly.
You may also complain about our use of personal data to the Information Commissioner’s Office. For further information on your rights and the complaints process, please visit the Information Commissioner’s Office website: https://ico.org.uk/for-the-public/raising-concerns/.
Data Retention
We will only keep personal data for as long as necessary for the purposes for which it was collected, or as required by applicable law or regulation.
Unless there are any overriding legal, regulatory or contractual requirements, we will retain records of services provided (which may include personal data) in accordance with our document retention policy.
A Personal clients
B Corporate clients (and individuals connected with our corporate clients)
C Individuals whose personal data we process where providing services to our clients
D Suppliers (and individuals connected with our suppliers)
E Contacts
F Website visitors
A. Personal clients
We aim to collect personal data only to the extent necessary for us to provide our services to our clients and for other agreed purposes. Where personal data is required for us to perform services for our clients, we request that our clients provide all necessary information to other relevant individuals (known as “data subjects”) about our use of personal data. Our clients may therefore refer other data subjects to this Privacy Notice.
We provide a range of services to personal clients. We may therefore process a range of personal data, as is appropriate for the performance of services, including contact details, business activities, family information and financial information such as details of income, taxation, financial interests and investments.
Certain services may also require us to process special categories of personal data such as race or ethnic origin, physical and mental health, sexual life and orientation, criminal records, and political, religious and philosophical beliefs. We will only process such personal data with the individual’s consent or as otherwise required by law or regulation.
We generally collect personal data directly from our personal clients or from third parties acting on their instructions. Such personal data may be used for the following purposes:
B. Corporate clients (and individuals connected with our corporate clients)
We aim to collect personal data only to the extent necessary for us to provide our services to our clients and for other agreed purposes. Where personal data is required for us to perform services for our clients, we request that our clients provide all necessary information to relevant individuals (known as “data subjects”) about our use of personal data. Our clients may therefore refer data subjects to this Privacy Notice. We generally collect personal data directly from our clients or from third parties acting on their instructions.
Such personal data may be used for the following purposes:
C. Individuals whose personal data we process where providing services to our clients
We aim to collect personal data only to the extent necessary for us to provide our services to our clients and for other agreed purposes. Where personal data is required for us to perform services for our clients, we request that our clients provide all necessary information to relevant individuals (known as “data subjects”) about our use of personal data. Our clients may therefore refer data subjects to this Privacy Notice.
We provide a range of services to clients and in doing so may process personal data that relates to third parties with a business connection to our clients, such as other advisers, suppliers, transaction counterparties etc. The personal data we process may include contact details, details of business activities, information relating to management and employees, payroll details, and financial information such as details of income, taxation, financial interests and investments.
We generally collect personal data directly from our clients or from third parties acting on their instructions. We may also collect personal data directly from third parties such as transaction counterparties. Such personal data may be used for the following purposes:
Compliance with legal and regulatory obligations – as a regulated firm, we are subject to various legal, regulatory and professional obligations that may require us to process and/or retain personal data held on our client files.
D. Suppliers (and individuals connected with our suppliers)
We aim to collect personal data about our suppliers (which for the purposes of this notice includes subcontractors that we use to provide services to clients) only to the extent necessary for us to receive services and goods from our suppliers, manage our relationship with our suppliers and facilitate the provision of services to our clients. Our suppliers may refer data subjects to this Privacy Notice. We generally collect personal data directly from our suppliers but sometimes also from third parties such as credit rating agencies.
Such personal data may be used for the following purposes:
E. Contacts
We use a customer relationship management system to collect and process personal data about business contacts such as existing clients, prospective clients and their representatives. Such personal data will typically include name, identity of employer, job title, email address, office address, telephone number and other contact details. We collect such personal data directly from the contact to whom the personal data relates.
We may use such personal data and make it accessible to our people for the following purposes:
We do not sell or otherwise release any personal data collected from contacts to third parties unless we have first obtained consent from the relevant contacts to do so.
F. Website visitors
What personal data do you collect when I visit the www.rmca.co.uk website?
We do not require registration in order for you to access www.rmca.co.uk, but if you participate in any of the activities or services offered by the website, we will collect the personal data that we need in order to provide you with those services, such as your name, job title, email address, employer’s name, and telephone number. We may also collect technical information such as your IP (Internet Protocol) address, details of the pages you visit on www.rmca.co.uk, other pages you visit on the Web, and which browser you used to view www.rmca.co.uk.
This website collects standard internet log and technical data to measure and improve the effectiveness of this website, to help diagnose problems with our server, to administer this website, to see where website traffic is coming from and to identify our users. We may also collect other information via www.rmca.co.uk, such as website usage activity and preferences, also known as demographic or profile data.
We do not seek to collect any sensitive personal information from you on www.rmca.co.uk, such as information in respect of your race or ethnic origin, political opinions, religious or other similar beliefs, physical or mental health, sexual orientation or criminal record. Where you provide sensitive personal information to us voluntarily, your doing so will constitute your explicit consent to us using that information in connection with the purpose for which it has been provided.
What do you use personal data collected through the www.rmca.co.uk website for?
When we collect personal information from you in the following circumstances, we will use it for the stated purpose or any purpose that is obvious e.g. when you:
We aim to collect the minimum amount of information necessary to enable us to deal with your request. We will indicate where the provision of information is voluntary or compulsory. We would normally only request additional information to enable us to provide the most appropriate response to your request.
Unless you ask us not to, we may also use your data to contact you with information about our business, services and events, and other information which may be of interest to you.