Information we may share
We may share information with the following third parties for the purposes listed above:
- Business partners or others who are a part of providing your products and services or operating our business
- Public bodies, law enforcement agencies and regulators – The police, other law enforcement agencies, regulators, as well as public bodies such as local and central authorities can sometimes request personal information. This may be for the purposes of preventing or detecting crime, apprehending or prosecuting offenders, assessing or collecting tax, investigating complaints or assessing how well a particular industry sector is working.
- Other organisations and businesses who provide services to us such as back up and server hosting providers, IT software and maintenance providers, social media providers, third party training providers, document storage providers and suppliers of other back office functions
- Our professional providers (including lawyers and accountants) that assist us in carry out our activities
- Analytics and search engine providers that assist us in the improvement and optimisation of our website (including Google Analytics)
- External agencies and organisations to comply with a request for assistance with a technical and/or policy issue, for example with DAERA
- We do not use automated decision making with your personal data
We will share your personal information with the National Farmers Union Mutual Insurance Society Limited (NFU Mutual) which is an entity associated with the Ulster Farmers Union that provides insurance and other financial services and products to the farming community. For information about how NFU Mutual may use your personal information, please see the NFU Mutual website: www.nfumutual.co.uk/privacy
Is your personal information transferred outside the UK or the EEA?
In order to provide our services, the information you give us may be transferred to countries outside the European Economic Area (EEA). These countries may not have similar data protection laws to the UK. When we do transfer your personal data outside of the EEA, we ensure that any party with access to your information has implemented the necessary security and privacy measures to ensure that your personal data is kept secure and confidential as outlined in this Policy.
Monitoring involving processing of your personal information
In this section monitoring means any: listening to, recording of, viewing of, intercepting of, or taking and keeping records (as the case may be) of calls, email, text messages, social media messages, in person (face to face) meetings and other communications.
We may monitor where permitted by law and we’ll do this where the law requires it, or to comply with regulatory rules, to prevent or detect crime, in the interests of protecting the security of our communications systems and procedures and for quality control and staff training purposes. This information may be shared for the purposes described above.
Personal information retention
Unless we explain otherwise to you, we’ll hold your personal information based on the following criteria:
- For as long as we have reasonable business needs, such as managing our relationship with you and managing our operations
- For as long as we provide goods and/or services to you and then for as long as someone could bring a claim against us
- Retention periods in line with legal and regulatory requirements or guidance
What are your rights?
Here is a list of the rights that all individuals have under data protection laws. They don’t apply in all circumstances. If you wish to use any of them, we’ll explain at that time if they are engaged or not.
- The right to be informed about the processing of your personal information
- The right to rectification, you can have your personal information corrected if it is inaccurate and have incomplete personal information completed
- The right to object to processing of your personal information
- The right to restrict processing of your personal information
- The right to erasure, you can have your personal information erased (the “right to be forgotten”)
- The right to access to your personal information and to obtain information about how we process it
- The right to data portability, you can move, copy or transfer your personal information
- Rights in relation to automated decision making which has a legal effect or otherwise significantly affects you
You have the right to complain to the Information Commissioner’s Office which enforces data protection laws: https://ico.org.uk/