We are committed to safeguarding the privacy of our website visitors; This policy sets out how we will treat your personal information.
What information do we collect?
We may collect, store and use the following kinds of personal data:
- Information about your computer and about your visits to and use of this website (including your IP address, geographical location, browser type, referral source, length of visit and number of page views)
- Information that you provide to us for the purpose of registering with us
- Information that you provide to us for the purpose of subscribing to our membership services, email notifications and/or newsletters/ event invitations.
The Chamber does not collect personal data about individuals except when there is a legitimate business requirement or when such information is provided on a voluntary basis.
The data controller for all personal data collected via this website is Exeter Chamber of Commerce with its registered office at No.1 Barnfield Crescent, Exeter, EX1 1QT. This means that we are responsible for deciding what data we collect and how we hold and use your personal data. We will implement appropriate data security measures for protecting the data from unauthorised access and loss, as laid out in the Security section of this Policy.
Purpose of processing
The personal data collected is used by the Chamber to give you information relation to Chamber membership, the Chamber’s website, other Chamber services, customer administration, prospecting new members, account management with existing members, to process and respond to queries received from the public or other relevant stakeholders, to contact you to seek your views or comments on emerging political or economic issues and to send marketing communications on the Chamber’s behalf or on behalf of the Chamber’s partners. The Chamber may perform statistical analyses of user behaviour and characteristics to measure interest in and the use of various sections of the website. The personal data held by the Chamber may also be used on an aggregate basis without any personal identifiers to provide third parties with information, such as the composition of membership, and to help us develop new member services and products, improve the features and content of the website or other marketing material, and to provide sponsors and others with aggregate information about our members, website users and their usage patterns in relation to services and/or the website.
If you or your parent company is a current member of Exeter Chamber of Commerce, opting out of promotional emails will not stop all communication from us. By becoming a member of the Chamber, your firm is signing you up to receive certain information related to the organisation. It is a constitutional requirement for us to send this information to you.
If you are not a member of the Chamber or if your or your parent company’s membership has lapsed, you can choose to opt in or out of further contact with us.
We also receive non-member data through networking (e.g. business cards, event registrations) and add these details, if relevant, onto our CRM or other data management system.
If you send us an email message or complete an online form, we will use your email/postal address and any information you provide to deal with and respond to your query or comments. This information may be disclosed to the appropriate person in order to deal with or respond to your message.
We may collect information that you give to us in consultations, surveys, competitions or questionnaires. Whenever we do this we will inform you of what your information will be used for and to whom it will be disclosed. We may share non-personal statistical, or summary information with organisations working in partnership with us, such as health authorities or local councils.
In addition, we may disclose information about you:
- To the extent that we are required to do so by law;
- In connection with any legal proceedings or prospective legal proceedings;
- In order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk); and
- To the purchaser (or prospective purchaser) of any business or asset which we are (or are contemplating) selling
The rights of users
Users may exercise certain rights regarding their Data processed by the Owner.
In particular, Users have the right to do the following:
- Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their Personal Data.
- Object to processing of their Data. Users have the right to object to the processing of their Data if the processing is carried out on a legal basis other than consent. Further details are provided in the dedicated section below.
- Access their Data. Users have the right to learn if Data is being processed by the Owner, obtain disclosure regarding certain aspects of the processing and obtain a copy of the Data undergoing processing.
- Verify and seek rectification. Users have the right to verify the accuracy of their Data and ask for it to be updated or corrected.
- Restrict the processing of their Data. Users have the right, under certain circumstances, to restrict the processing of their Data. In this case, the Owner will not process their Data for any purpose other than storing it.
- Have their Personal Data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the erasure of their Data from the Owner.
- Receive their Data and have it transferred to another controller. Users have the right to receive their Data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. This provision is applicable provided that the Data is processed by automated means and that the processing is based on the User’s consent, on a contract which the User is part of or on pre-contractual obligations thereof.
- Lodge a complaint. Users have the right to bring a claim before their competent data protection authority.
Details about the right to object to processing
Where Personal Data is processed for a public interest, in the exercise of an official authority vested in the Owner or for the purposes of the legitimate interests pursued by the Owner, Users may object to such processing by providing a ground related to their particular situation to justify the objection.
Users must know that, however, should their Personal Data be processed for direct marketing purposes, they can object to that processing at any time without providing any justification. To learn, whether the Owner is processing Personal Data for direct marketing purposes, Users may refer to the relevant sections of this document.
How to exercise these rights
Any requests to exercise User rights can be directed to the Owner through the contact details provided in this document. These requests can be exercised free of charge and will be addressed by the Owner as early as possible and always within one month.
This privacy statement applies only to websites belonging to and operated by the Exeter Chamber of Commerce & Industry. We are not responsible for the content or privacy practices of third party web sites that may be linked to our web pages.