Privacy Statement
Alplas takes privacy very seriously and complies with the requirements of PECR 2003 and GDPR 2018. This is a concise statement supporting our Data Protection Policy (External) a copy of which can be provided upon written request.
Personal data is only handled and recorded to conduct normal trading business.
Alplas is both the ‘controller’ and ‘processor’ of the data it collects and stores and any data query should be sent to us at the contact details elsewhere on this website.
Alplas will uphold the following data protection principles:
a) processing will be fair, lawful and transparent
b) data be collected for specific, explicit, and legitimate purposes, related only to our normal trading business
c) data collected will be adequate, relevant and limited to what is necessary for processing
d) data will be kept accurate and up to date. Data which is found to be inaccurate will be rectified or erased without delay
e) data is not kept for longer than is necessary for its given purpose
f) data will be processed in a manner that ensures appropriate security of personal data including protection against unauthorised or unlawful processing, accidental loss, destruction or damage by using appropriate technical or organisation measures
g) we will comply with the relevant GDPR procedures for the international transfer of personal data
Alplas uses the ‘soft opt-in’ to existing recent customers for future marketing contact regarding relevant, similar goods offers and will always offer an ‘opt-out’ with any marketing contact. In the case of new registrations on our website, registrants consent to our holding of entered data in line with this Privacy Statement.
Customer payment information is not stored on the website nor in any other way by Alplas but is made through Sagepay, a recognised third-party payment portal and our website is SSL security certified.
Your information is secure and not passed to any other party for marketing or commercial purposes. Alplas retains all data on secure servers and where outside consultants are used for data management and protection purposes all consultants are required to agree to work fully within the GDPR requirements. Alplas has appointed director-level responsibility for data control, made all data processors aware of their responsibilities and duties, and has detailed policies in place for data protection.
For further details please contact us on [email protected]