For the purposes of the General Data Protection Regulation (the “Directive”) and the Data Protection Act 2018 (“the “Act”) the data controller is Gorilla Accounting (“Gorilla Accounting” “we,” “us,” “our”), Ground Floor, Unit B Lostock Office Park, Lynstock Way, Lostock, Bolton, BL6 4SG.
Any queries or concerns relating to Gorilla Accounting, this policy or this website can be addressed in writing to our registered office or via email to email@example.com.
Gorilla Accounting is registered with the Information Commissioner as a Data Controller under registration number ZA091838.
We take the privacy of our clients and visitors to this site seriously. We therefore will seek to only use any information provided for the following legitimate purposes:-
We do not share the information with any third party unless you have provided your consent to allow us to do so. For example in the event that it is necessary to answer your enquiry we may seek your consent to pass on some or all of the information provided. We take active steps to ensure that such third parties will not contact you directly without your consent.
If you email a query to us then the email address supplied will be used solely to answer the enquiry and will not be used for any other purpose without your direct consent (e.g. if you subscribe to one of our services using the same email address then we will use that email address for the purposes of providing and/or discussing the services).
Collection of data
We may collect and process the following data about you:
The above list is not exhaustive and further information may be collected from time to time.
In accordance with the Directive we will only seek information which is relevant, will keep the information confidential and will never keep the information for longer than is necessary.
Such information may be collected by:
Again please note that any information collected by the use of Internet Cookies does not identify any individual. It is used for the purpose of monitoring use to the site to allow us to improve the services offered.
For more information please see our Cookie Usage Policy below.
Protecting your information
All information you provide to us is stored on our secure servers and the recipient will be Gorilla Accounting. Relevant employees of Gorilla Accounting may process the information to ensure that we meet your needs and/or make improvements to our website. We have a robust data protection procedures and security safeguards in place to ensure that only relevant employees have access to your information and only to the extent to allow them to carry out what is required.
Unfortunately we cannot guarantee that the transmission of information via the internet is completely secure. We will seek to protect your personal data however any transmission is at your own risk.
Therefore if you have any concerns then please do not enter any details in our website. Once we have your information we will use our internal procedures and security to seek to prevent unauthorised access and ensure it is kept in the strictest confidence.
As a general rule our data is held on secure servers in the European Union. In the event that any data is temporarily stored on servers which are located outside the European Union then we have taken steps to ensure that such servers are secure to the extent required by GDPR.
We will use information entered by you on our website to:-
Your data and third parties
We will only disclose your data to third parties in the following limited circumstances:-
Our site may, from time to time, contain links to and from the websites of our clients and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you enter any personal data to these websites.
Use of legitimate interest as a right to process your information
Under the directive there are various reasons why we may process your information. One of the most commonly used is where we have a “legitimate interest” to process such information. “Legitimate interest” can cover a wide range of circumstances and consequently before we rely on it we will ensure that our intended use matches the following three part test as specified in the directive:
It is important to note that you do have rights which may affect our ability to rely upon “legitimate interest” to process your information. These are listed in the “Your Rights” section below.
Retention of information
Under the terms of the Directive we will only retain information for as long as is necessary to allow us to carry out the matters listed in the information usage section.
The exact time period of retention will vary dependant on usage. For example should you request a call back then we will only keep your information to allow us to make contact with you. Should it be clear that no further contact is required then we will delete all personal information held.
However there may be occurrences when information is held for a longer period of time such as if you become a client.
It is important to note that you do have rights which may affect our ability to retain your information. These are listed in the “Your Rights” section below.
Under the Directive you have a number of rights which you may enforce at any time. Such rights and how they apply in respect of this privacy notice are as follows:
Please note that we will only seek to obtain sufficient information from you for the purposes detailed in the information usage section. However we recognise your rights above to restrict, object or request the erasure of any information held. Whilst the GDPR allows us to refuse to process such requests in certain circumstances, it does not require us to consider all the consequences of processing a request. For example your request to restrict the use of your information may result in us being unable to provide you with a service you have sought. Therefore we would suggest that you consider all consequences of asserting a right and we would be more than happy to discuss any concerns that you may have.
Nothing in this policy should be construed as seeking to limit or remove your statutory rights. Should you have any concerns in this regard please seek appropriate independent legal advice.
Changes to this Notice
Again should you have any concerns or wish to exert a right then please do not hesitate to contact Craig Whelan on 0330 024 0406.
Should you be dissatisfied with how we use your information then you have the right to complain the Information Commissioners Office (“ICO”). Details are available at https://ico.org.uk/concerns/