STTP Racing Customer Privacy Policy
Here is our customer privacy policy, we will explain how we collect personal data from you, how it is used and who it is disclosed to. This policy is non-contractual. We are committed to protecting all your personal information that we have access to.
Personal Data:
The types of personal information we process includes name, address, telephone number, email address and your purchase history also if applicable business information. We collect this information when you trade with us and enter a purchase. The information is stored on our systems and in emails as well as in paper files. Our lawful reason for processing your data is based on our legitimate business interests because we need to process your data to carry out our obligations under the contact of purchase and supply or because we need to comply with a legal obligation. Without it we cannot administer your purchase order properly and for customers, we need to administer a successful order process. We may use your personal information without your knowledge or consent where we are permitted or required by law or regulatory requirements to do so.
We use the personal data for business purposes including establishing, managing and supplying an order and assisting you were required. For example, we need to: Determine suitability of a product we supply, undertake processes such as shipping and delivery arrangements, help you when you use our site such as by using live chat, understand how people are using our website so that we can improve what we are able to offer you. We also are on Facebook, twitter and Instagram and we display videos and posts on social media. We also allow you to leave reviews of our services.
As part of your customer contract we monitor compliance with other policies, such as our IT policy, this is to ensure that any data is deleted as soon as we are required to.
We may share your personal information with our employees, consultants and other parties who require such information to assist us with establishing, managing or terminating our supplier relationship with you. When we share personal information with these parties we require that they only use or disclose personal information in a manner consistent with the use and disclosure provisions of this Privacy Policy. We also ensure that any contract with these organisations contains necessary privacy and security provisions in line with data protection legislation.
There are some legal and regulatory requirements which govern how long we should retain your personal data. Outside of these we endeavour to retain your personal information only for as long as we believe is necessary to fulfil the purposes for which the personal information was collected (including for the purpose of meeting any legal, accounting or other reporting requirements or obligations). We may, instead of destroying or erasing your personal information, make it anonymous so that it cannot be associated with or tracked back to you.
In general, we will keep sales enquiry data for up to 6 months after the initial process / campaign. For customers who have purchased from us, but no longer wish to do so, we will after 2 years just maintain enough data necessary for statutory reasons and for providing reference information should the individual authorise us to provide it.
The rights of individuals whose personal data we process
It is important that the information we process on you is accurate and up to date so please inform us of any changes. If we are processing your personal data you have the following rights:
The right to be informed of what data we are processing, what for, how we obtained the data and to whom it is released.
Subject to certain conditions as set out in ‘Access to your personal data’ below, you have the right to access the data we are processing on you
The right to rectification of the data if incorrect or inaccurate
The right of erasure (in certain circumstances such as where you gave your consent to process)
The right to restrict processing (to request that we do not process data for certain activities in certain circumstances)
The right to data portability (where appropriate)
The right to object
The right not to be subject to automated decision making
You can ask to see the personal information that we hold about you. To do so, please contact our Data Controller and your request must be in writing.
We maintain all safeguards that are appropriate to keep all your personal information safe. We also have trained staff, so they know all policies and procedures to keeping personal data safe.
If you have any questions about this policy please email us on tech@sttpr.com and we will be happy to discuss and advise you.
Regarding financial information, both ourselves and any payment processing gateways we may use, comply with the appropriate Payment Card Industry Data Security Standard (PCI DSS) compliance, and certification is available upon request.