The Data Protection Act
The Data Protection Act controls how your personal information is used by organisations, businesses or the government. Everyone responsible for using data has to follow strict rules called ‘data protection principles’. They must make sure the information is:
- used fairly and lawfully
- used for limited, specifically stated purposes
- used in a way that is adequate, relevant and not excessive
- kept for no longer than is absolutely necessary
- handled according to people’s data protection rights
- kept safe and secure
- not transferred outside the European Economic Area without adequate protection
There is stronger legal protection for more sensitive information, such as:
- ethnic background
- political opinions
- religious beliefs
- health inc. sexual health
- criminal records
Spectra Analytics may collect certain information or data about an individual when they visit the Spectra Analytics site (www.spectraanalytics.com) or use any of the Spectra Analytics products or products that are Powered By Spectra Analytics This includes:
- Questions, queries or feedback you leave, including your email address if you send an email to firstname.lastname@example.org or other Spectra Analytics emails
- Your IP address, and details of which version of web browser you used
- Information on how you use the site, using cookies and page tagging techniques to help us improve the website
- Details to allow you to access Spectra Analytics services and transactions, eg an email address (you’ll always be told when this information is being collected, and it will only be used for the purpose you provide it for)
This helps us to:
- Improve the site and our digital services by monitoring how you use them
- Respond to any feedback you send us, if you have asked us to
- Provide you with information about other services if you want it
Where Your Data is Stored
We store your data on secure AWS servers in the UK. It may also be stored outside of Europe, where it could be viewed by our staff or suppliers.
By submitting your personal data, you agree to this.
Keeping Your Data Secure
- Transmitting information over the internet is generally not completely secure, and we can not guarantee the security of your data.
Any data you transmit is at your own risk. We have procedures and security features in place to try and keep your data secure once we receive it.
We will not share your information with any other organisations for marketing, market research or commercial purposes.
We do not pass on your details to other websites.
Payment transactions are always encrypted.
Spectra Analytics may keep your data on file for up to ten years.
Disclosing Your Information
You can find out what information we hold about you, and ask us not to use any of the information we collect. You can do this by contacting the Spectra Analytics Chief Technical Officer (Dr Dan Sprague – email@example.com). If you are not happy with this response then you can make a complaint to the Information Commissioner’s Office (ICO) – See Section below.
Links to Other Websites
Following a link to another website
Following a link to www.spectraanalytics.com from another website
www.spectraanalytics.com puts small files (known as ‘cookies’) onto your computer to collect information about how you browse the site.
Cookies are used to:
- measure how you use the website so it can be updated and improved based on your needs
- remember the notifications you have seen so that we do not show them to you again
www.spectraanalytics.com cookies are not used to identify you personally.
You’ll normally see a message on the site before we store a cookie on your computer.
Making a Complaint
If you think your data has been misused or that the organisation holding it has not kept it secure, you should contact them and tell them.
If you are unhappy with their response or if you need any advice you should contact the Information Commissioner’s Office (ICO).
Telephone: 0303 123 1113
Call charges may apply. You can also chat online with an advisor. The ICO can investigate your claim and take action against anyone who has misused personal data.