2. Data Protection
Cavendish Consortium Ltd seeks to comply with the UK Data Protection Act 2018 (GDPR). We follow appropriate security procedures in the storage and disclosure of personal information to prevent unauthorised access by third parties. We also require those parties to whom we transfer personal information to comply with the same.
Types of data:
Information from your browser/computer
We use Google Analytics and other software to provide information such as broken links on the website, number of website visits, page views, and information on what browsers and devices people are using to access our services. The software also detects location data using IP addresses. This data is not linked to any personal data and is just used to allow us to monitor trends and the performance of our website.
Information you send us via email
If you enter into any correspondence via email to report a problem or ask a question, then we will retain the personal information you send us for the purposes of dealing with your enquiry. This may involve sharing data with our partners. By requesting assistance from Cavendish Enterprise you accept that your enquiry, and therefore data, may be passed to appropriate third parties.
Online enquiry form
We do not currently have an online enquiry form on our website.
Our website uses an SSL certificate which makes sure that there is an encrypted connection between the web browser and the server. This means that any personal information that’s entered on the website is encrypted when being transferred to the web server.
Protection against cyber attacks/hackers
We have a firewall on our web server which is designed to inspect incoming traffic, weed out any malicious attacks and provides a first line of defence between a potential hacker and the data that we are hosting. We have carried out penetration testing where we get a third party company to attempt to hack the website. They report back if there are any vulnerabilities in the site (which there are none).
3. Scope of this policy
This Policy only applies to the use that we make of data provided to us via the Internet, SMS, in person and email.
4. Why we need to collect information from you
We use your information to:
• Deliver our services (Business Advice, Business Training, Tenancy, Finance – Grants and Loans).
• Carry out personalised marketing and communications (if you have opted to receive these). We may use the information we collect about you to notify you from time to time about important new features and changes to our services or items we think you’ll find of interest.
• Obtain feedback from you on our services.
• Monitor the usage of the website, performance and trends so that we can improve our services
Subject to what we say below, we will not pass on your personal details to any third party site sponsors or advertisers, without your consent. However, in order to provide services to you we will need to provide your data to our funders and service providers.
We may provide aggregate statistics about our users, sales, traffic patterns and related site information to our third-party partners (if any), but these statistics will not contain any information about you from which you could be identified.
5. Security and possibility of international transfer
Please note that countries outside the EEA may not have the same level of protection as countries within the EEA, but we always demand that those parties to whom we transfer data adhere to the same security procedures that we follow ourselves. By submitting your personal information, you consent to such processing and transfers in connection with such orders, offers or services and for any other purposes to which you consent at the time you provide the information.
Since 26 May 2011, the law has stated that cookies can only be used by a website with the specific consent of its users. Cookies are small pieces of information that are issued to your computer when you enter a website. They are stored by your browser on your computer’s hard drive and can be used for a wide range of purposes, such as identifying your computer’s previous visits to this website, and to ascertain the most popular features of this website.
7. Links and third party advertising
Google will store statistical and other information about website use by means of cookies, which are stored on users’ computers. The information generated relating to our website is used to create reports about the use of the website.
8. Controlling your personal information
You may choose to restrict the collection or use of your personal information in the following ways:
- whenever you are asked to fill in a form, look for the box that you can click to indicate that you do not want the information to be used by anybody for direct marketing purposes.
- if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to us at Cavendish Data Controller, NBV, Mercury House, Shipstones Business Centre, Northgate, Nottingham, NG7 7FN, or emailing your usual contact or [email protected].
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.
You may request details of personal information which we hold about you under the Data Protection Act 1998. If you would like a copy of the information held on you please write to us at Cavendish Data Controller, NBV, Mercury House, Shipstones Business Centre, Northgate, Nottingham, NG7 7FN, or by emailing your usual contact or e[email protected].
If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.
9. Publicly funded Services
Regional Growth Fund (RGF)
We deliver a number of RGF funded programmes on behalf of the Department for Business, Energy, and Industrial Strategy (BEIS).
We and BEIS operate in accordance with the Data Protection Act 1998 and the GDPR (2018). The personal information provided through these programmes will be used by us to provide business advice and services. For contractual purposes, it may also be shared with BEIS for the purposes of research and monitoring our performance. All information will be held in the strictest confidence. If you do not wish your data to be shared with BEIS please contact [email protected]
10. Updates to this Policy
We may change information on this Site and/or this Policy at any time without notice. You should regularly review this Policy for any changes. Any changes will be effective immediately upon the posting of the revised Policy on this Site. By continuing to use the Cavendish website, you agree to any changes, and by providing continued access on the site we are providing you consideration for agreement to such changes.