At Powell Williams LLP, we’re committed to protecting and respecting your privacy. This Policy explains:
We may change this Policy from time to time so please check this policy occasionally to ensure that you’re happy with any changes. By using our website, you’re agreeing to be bound by this Policy.
Any questions regarding this Policy and our privacy practices should be sent by email to firstname.lastname@example.org or by post to Sue Fendt, BD and Marketing Manager, Powell Williams LLP, 28 Austin Friars, London, EC2N 2QQ.
Powell Williams LLP is an independent building and project consultancy that works predominately within the commercial real estate industry and is regulated by the Royal Institute of Chartered Surveyors. Our Head Office address is Powell Williams LLP, 28 Austin Friars, London, EC2N 2QQ.
We obtain only basic and non-sensitive information from you, and only that which you choose to supply to us, during our general day-to-day business dealings in order, to be able to keep in touch with you and operate our business. The majority of our data subjects are clients, work referrers, contractors, suppliers or those in the employ of Powell Williams, and those we have an existing, relevant and appropriate relationship with.
Third party cookies:
We also use social media buttons and/or plugins on our website, that allow you to connect with your social network in various ways. For these to work, the following social media sites including Twitter, Facebook, LinkedIn, Instagram (where we use them on our website) will set cookies through our site which may be used to enhance your profile on their site or contribute to the data they hold for various purposes outlined in their respective privacy policies.
In all appropriate circumstances, we rely the lawful reason of Legitimate Interests under the General Data Protection Regulation (“GDPR”), by which to process personal information. In broad terms, this means that we can process your personal information, if we have a genuine and legitimate reason and, we are not harming any of your rights or interests. Before doing this, however, we will also carefully consider the necessity of any processing and balance any potential impact on you and your rights.
Under the terms of GDPR ‘processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
We process personal information for certain legitimate business purposes, which include some or all of the following:
We always strive to ensure that any processing is compatible to the purposes it was originally collected for. We do not undertake any kind of profiling or automatic-decision making processing.
We have achieved the Cyber Essentials Plus Accreditation. The scheme provides security controls that are independently tested, so that client and firm-wide information is safe from common cyber-attacks, and showcases the firm’s ongoing commitment to meet the highest security standards possible. For further information, please refer to our Data Breach Policy.
We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory and regulatory obligations for between 6 or 12 years. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.
We will not sell or rent your information to third parties. We will not share your information with third parties for marketing purposes.
Third Party Service Providers working on our behalf: We may pass your information to our third party service providers, agents, subcontractors and other associated organisations for the purposes of completing tasks and providing services to you on our behalf (for example, our outsourced IT service provider with regards in relation to our client extranet site). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service.
Please be reassured that we will not release your information to third parties for them to use for their own direct marketing purposes, unless you have requested us to do so, or unless we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime.