Contractors Support Limited’s Privacy Policy
Our Contact Details
We are Contractors Support Limited (Company Number: 10490477) whose registered office is at Suite 125 Imperial Court, Exchange Street East, Liverpool, England, L2 3AB (“We/Us/Our”). You can contact us by email at Assist@ContractorsSupport.co.uk or by telephone on 0151 440 2087 and you can find our website at www.contractorssupport.co.uk (“Our Site”) which is owned and operated by us.
Please read this Privacy Policy carefully and ensure that you understand it. Your acceptance of this Privacy Policy is required. Your use of Our Site will be deemed acceptance of this Privacy Policy.
Any changes will be posted on Our Site and you will be deemed to have accepted the terms of the Privacy Policy on your first use of Our Site following the alterations. We recommend that you check this page regularly to keep up-to-date.
The Type of Personal Information We Collect
We currently collect and process the following information:
- Personal identifiers (for example, name, title, date of birth);
- Contact information (address, email, telephone number);
- Financial information (for example, bank details, national insurance number, unique tax reference);
- Our Site usage information (for example, IP address, browser type and version, uniform resource locators (URLs));
- Employment Information (for example, job title, employer details and tax code);
- Cookies are used to track how users navigate Our Site. See our Cookies policy for further information.
How We Get the Personal Information and Why We Have It
Most of the personal information we process is provided to us directly by you for one of the following reasons:
- Providing and managing your access to Our Site;
- Personalising and tailoring your experience on Our Site;
- Contracting, Contacting, communicating and managing Our relationship with you;
- To contact and communicate with HMRC, your employer and other third parties as authorised by you and as part of Our services;
- Administering Our Site;
- Administering Our business;
- Managing payments for Our services;
- Complying with legal obligations; and
- Supplying information to you that you have opted in to receiving (you may opt out at any time by emailing us on the email address set out in ‘Our Contact Details’ above with an instruction to opt you out).
We also receive personal information indirectly, from the following sources in the following scenarios:
- HMRC if we make contact with them on your behalf as part of our services;
- Your employer, pension provider, loan provider and/or any other third party that you authorise us to contact if we make contact with them on your behalf as part of our services.
We may use the information that you have given us in order to:
- To enable us to complete our procedures to enter into a contract with you, deal with any queries and manage our relationship;
- Provide and manage your access to Our Site;
- Personalise and tailor your experience on Our Site;
- Contact and communicate with you;
- Tailor and/or provide Our services to you;
- Contact and communicate with HMRC, your employer and other third parties as authorised by you and as part of Our services;
- Administer Our Site and Our business;
- Comply with legal obligations to which we are subject such as for invoices for HMRC;
- Where processing of special category data is necessary to uniquely identify a natural person;
- Where it is necessary for our legitimate interests and your interests and fundamental rights do not override those interests;
- Manage payments for Our services; and
- Supply information to you that you have opted in to receiving.
We will share this information with third parties instructed by us to meet our contractual obligations to you. These will include:
- HMRC for the purposes of delivering our services to you (for example, dealing with your self -assessment tax return and/or responding to correspondence and/or other queries received from HMRC);
- Our service providers to enable us to communicate with you and deliver our services (for example, IT and system administration service providers, accounting service providers and compliance advisors);
- Any persons that you request us to share your data with or it is necessary to share it with to deliver our services to you (for example, your employer, bank or student loan provider);
- Any party that we are under a legal obligation to disclose your information too (for example, the information commissioners office).
We will not sell your data.
It is important that your personal data is kept accurate and up-to-date so if any of the personal data we hold about you changes, please let us know promptly using the details set out in ‘Our Contact Details’ above.
The Bases for Processing
Under the UK General Data Protection Regulation (UK GDPR), the lawful bases we rely on for processing this information are:
(a) Your consent. You are able to remove your consent at any time. You can do this by contacting us using the details set out in ‘Our Contact Details’ above;
(b) We have a contractual obligation; and
(c) Legitimate Interest.
How we store your personal information
Your information is securely stored and retained for the periods set out below unless otherwise required by law.
We have in place security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.
| Data Type | Retention Period |
| Personal identifiers | For the term of any contract and/or delivery of Our services to you plus 3 months |
| Contact information | For the term of any contract and/or delivery of Our services to you plus 3 months |
| Financial information | For the term of any contract and/or delivery of Our services to you plus 3 months |
| Website user information | Until your browser cookies are cleared |
| Employment Information | For the term of any contract and/or delivery of Our services to you plus 3 months |
We will not store your information for longer than is reasonably necessary or required by law.
We will then securely dispose your information by deletion from our computer systems of any such data held on hardware and/or cloud systems and confidential destruction of any hard copies using a verified confidential waste destruction provider.
Your data protection rights
Under data protection law, you have rights including:
Your right of access – You have the right to ask us for copies of your personal information.
Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.
Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.
Your right to Object and to withdraw your consent to processing – You have the the right to object to the processing of your personal information where we rely on legitimate interest to do so. You also have the right to withdraw your consent to the processing of your personal information where we rely on your consent to do so. You are able to withdraw your consent at any time.
Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
You are not required to pay any charge for exercising your rights but if your request is unfounded or excessive we may charge a fee or refuse to deal with the request. If you make a request, we have one month to respond to you.
Please contact us using the details set out in ‘Our Contact Details’ above if you wish to make a request.
How to Complain
If you have any concerns about our use of your personal information, you can make a complaint.
You can contact the Information Commissioner’s Office at (www.ico.org.uk) but we would appreciate the opportunity to deal with your concerns before then so please contact us in the first instance.
We have put in place procedures to deal with any suspected personal data breach. In the event of a breach, will notify you and any applicable regulator of a breach where we are legally required to do so.