Effective date: 31/07/23
1. Introduction
Heati.co.uk, a UK-based Emergency Boiler Replacement company, is committed to protecting the privacy and personal data of our website users and customers. This GDPR Compliance document outlines how we handle and process personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
2. Data Controller
Heati Ltd, a registered company in England and Wales, is the data controller responsible for the collection, processing, and storage of personal data obtained through the Heati.co.uk website.
3. Types of Personal Data Collected
We may collect the following types of personal data from website users and customers:
Contact Information (e.g., name, email address, phone number)
Address and location details
Payment information for online transactions
IP address and browsing behaviour on the website
Information you provide in forms or surveys
Communications and correspondence with us
4. Purpose of Data Processing
We process personal data for the following purposes:
Providing Emergency Boiler Replacement services
Processing and managing customer orders and inquiries
Sending relevant updates and notifications
Improving our website and services
Complying with legal and regulatory obligations
5. Legal Basis for Data Processing
Our data processing activities are based on the following legal grounds:
The processing is necessary for the performance of a contract with the data subject (e.g., providing Emergency Boiler Replacement services).
The processing is necessary for compliance with a legal obligation to which we are subject.
The data subject has given consent for one or more specific purposes.
6. Data Retention
We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting requirements.
7. Data Security
We take appropriate technical and organisational measures to safeguard personal data against unauthorised access, alteration, disclosure, or destruction. Access to personal data is restricted to authorised personnel who need to process the data for legitimate purposes.
8. Data Sharing
Heati Ltd may share personal data with third-party service providers and partners, only to the extent necessary to fulfil our business purposes and provide services to our customers. We ensure that any third-party recipient of personal data is GDPR compliant and maintains appropriate data security measures.
9. Data Subject Rights
Under GDPR, data subjects have the following rights:
Right to access personal data
Right to rectification
Right to erasure (Right to be forgotten)
Right to restriction of processing
Right to data portability
Right to object to processing
Right to withdraw consent
To exercise any of these rights or for inquiries regarding personal data, please contact us at contact@heati.co.uk.
10. Changes to this GDPR Compliance
We may update this GDPR Compliance document to reflect changes in our data processing practices or legal requirements. Any updates will be posted on this page with an updated effective date.
11. Contact Us
For questions or concerns about our GDPR compliance or the processing of personal data, please contact us at contact@heati.co.uk.
By using the Heati.co.uk website, you acknowledge that you have read, understood, and consent to the processing of personal data as described in this GDPR Compliance document.