General Data Protection Regulation (GDPR) Credentials Statement
Who we are and what services we are providing
Engineer it for me Ltd trading as Heat-Exchangers-Software Registered office: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
Designated contact: email@example.com
Services provided: Software development, product supply and software activation support.
Personal data being processed and processing activities
The personal data being processed by our resellers is that which the controller has supplied to our reseller or which Heat-Exchangers-Software has obtained or created in order to provide the services in accordance with, and as notified in, the relevant client contract, quote and/or end user license agreement. We may also use personal data for marketing and credit control purposes.
As also notified in the relevant client contract, quote and/or end user license agreement, there are circumstances in which Heat-Exchangers-Software will be acting as Controller in relation to the personal data.
When a Partner, or one of their customers, email our technical help desk or partner support team, we are contractually required to record these emails as part of the agreements we have in place with our Partners, to help us meet our service obligations. Our support engineers may sometimes need to email directly to end users to resolve an issue and as such these emails may be recorded. These emails already form part of our Data Protection and Retention policy and handling of these recordings forms part of our GDPR programme.
Data management and security
Heat-Exchangers-Software takes data security very seriously and follow best practices for security and data storage including but not limited to:
Company GDPR policy
Information Security Management System (ISMS) policy
Controlled and logged access to sensitive business systems.
Controlled physical access to company premises.
Employee training on policies and best practices.
Regular employee reminders of policy and best practice.
A documented data classification register.
Data retention policy.
Data security incident management policy.
Website terms and conditions
Nominated Data Protection contacts (firstname.lastname@example.org)
Employees are required to complete an annual declaration confirming their awareness of Heat-Exchangers-Software confidentiality and security procedures. Compliance with any group policies relating to data protection and confidentiality of information is mandatory.
Use of Sub-Processors
Heat-Exchangers-Software has either obtained or is in the process of seeking and obtaining similar Credentials Statements or equivalent from Sub-Processors who process the personal data which is the subject of our contract.