BB&C Architects Limited (BB+C) is committed to ensuring that your privacy is protected in accordance with all of our legal obligations.
This policy applies where we are acting as a data controller with respect to the personal data of our employees, clients, suppliers and other individuals for a variety of business purposes.
By using our website www.bbcarchitects.co.uk or providing us with your personal information you are agreeing to this policy.
Who we are:
We are BB&C Architects Limited, Company Registration No 9493805, and our address is 33a Bridge Street, Cambridge CB2 1UW.
What personal data we collect and why we collect it:
We will only process your personal data if we have a legal basis for doing so, as outlined below or as notified to you at the time we collect your personal data. If we wish to use your personal data for a purpose unconnected with its collection, we will notify you prior to use and explain the legal basis which allows us to do this. Please note that we may process your personal data without your knowledge or consent, where this is required or permitted by law.
Website visitors: We may collect personal data from you based on your use of our website via Google Analytics, such as location data. Please see the information on Cookies below.
Third party links: Our website may include links to third party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third party websites and are not responsible for their privacy statements.
Clients: We collect personal data, such as name, email address, address and telephone number, if it is directly provided to us by you the user. Normally you will only provide such details if you are requesting a service from us and on a contractual lawful basis. We do not collect sensitive personal data.
The information that we collect and store is relating to you is primarily used to enable us to provide you with the services you have requested from us, and to meet our contractual obligations. This may include passing your details onto select Consultants and Suppliers, such as surveyors, so that they can provide details of their services and products relevant to your project. Once your project is complete we will retain the information as per our record retention guidelines. You can contact us to find out more about this.
Job applicants, and current and former employees: We collect personal data, such as name, email address, address and telephone number, if it is directly provided to us by you the user. We do not collect sensitive personal data without your explicit consent.
We will only use the information you give us for legitimate interest to process your job application, employment and to monitor recruitment statistics. If we want to disclose information to someone outside of BB+C, for example if we need a reference, we will tell you beforehand, unless we are required to disclose this information by law.
If there are no suitable vacancies immediately available or you are unsuccessful in your job application, we will hold your CV and portfolio on file for six months. After this time the documents will be safely destroyed, although copies may remain in our secure electronic data archive system.
Once you stop working in the Practice, we will retain the information as per our record retention guidelines. You can contact us to find out more about this.
Who we share data with:
BB&C Architects Limited will disclose your personal information or any of its log file information when required by law and where you have consented for us to do so, to selected third parties who may contact you about their relevant goods or services.
BB&C Architects Limited reserves the right to transfer information in connection with the sale of all or part of the BB&C Architects Limited capital stock or assets to any third party.
International data transfers:
Countries outside of the European Economic Area (EEA) do not always offer the same levels of protection to your personal data, so European law has prohibited transfers of personal data outside of the EEA unless the transfer meets certain criteria.
Some of our third party service providers may be based outside the European Economic Area (EEA) so their processing of your personal data will involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we do our best to ensure a similar degree of security of data by ensuring at least one of the following safeguards is implemented:
BB&C Architects Limited would like to place cookies on your computer to help us make our website better. Cookies are small text files that are placed on your computer by websites that you visit to identify you. They are widely used in order to make websites work, or work more efficiently, as well as to provide relevant information to you.
The BB&C Architects Limited website does not control the dissemination of these cookies. You should check the third party websites for more information about these.
Provider: Google Analytics
Names: _utma; _utmb; _utmc; _utmz
Purpose: These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited.
You can choose to manage the cookies we use on this website through your browser settings at any time. For more information about how to do this, and about cookies in general, you can visit https://ico.org.uk/for-the-public/online/cookies/
Security of your data and data breach procedures:
BB&C Architects Limited uses a number of reasonable precautions to keep the information disclosed to us secure including physical protection, electronic measures and providing all staff with data protection training. You can contact us to find out more about our Security Policy.
We are registered with the Information Commissioner’s Office and have a legal obligation to report any data breaches to the Information Commissioners Office with 72 hours.
We do not use automated decision making and/or profiling.
Your rights of access to your personal data:
The Data Protection Act 1998 and the General Data Protection Regulations give you a number of rights relating to the personal data we hold on you, including:
Further information on your rights is available on the Information Commissioner’s Office website www.ico.org.uk
If you want to enact one of your individual rights, please contact the Data Protection Lead using the details below. We will endeavour to respond to your requests within one calendar month and at least within two for complicated requests. You will not have to pay a fee for this although we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive.
How to contact us:
Data Protection Lead
Version 1, May 2018.