Our Privacy Policy

This privacy policy sets out how SES (SCOT) LIMITED uses and protects any information that you give SES (SCOT) LIMITED when you use this website.

Who we are

Our SSL secured website address is: https://www.scottishenergysaving.co.uk

Headquarters:SES (SCOT) LIMITED
Scottish Energy Saving Website

16 Cromarty Campus,
Rosyth, Dunfermline,
United Kingdom,
KY11 2WX

Tel: 0800 799 97 53
https://www.scottishenergysaving.co.uk/contact-us/

Email
info@scottishenergysaving.co.uk

https://beta.companieshouse.gov.uk/company/SC592006

SES (SCOT) LIMITED is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.

SES (SCOT) LIMITED may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from: May 2018

What we collect

We may collect the following information about you:

  • Your name and job title
  • Your contact information including email address
  • Demographic information such as postcode, preferences, and interests
  • Other information relevant to customer surveys and/or offers/marketing preferences

    Comments

    When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

    An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

    Media

    If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

    Contact forms

    On the following page(s) we collect the infomation shown below:
    If you input information on this page we hold and store this information for 90 days unless the law requires us to  retain it for longer.

    The Name you enter:
    The Email Address you enter:
    The choosen department pertaining to the post you select:
    The desired date and time you wish to be contacted that you select:
    The Subject the you enter:
    The Comment or message you enter:
    The Time & Date you submit the form to us.

     

What we do with the information we gather

We require this information to understand your needs and provide you with a better service, and in particular for the following reasons:

  • Internal record keeping.
  • We may use the information to improve our products and services
  • We may periodically send promotional emails about new products, special offers, or other information which we think you may find interesting using the email address which you have provided.

From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone, fax, or mail. We may use the information to customise the website according to your interests.

 

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect online.

 

What is a cookie?

Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device.

You can find more information about cookies by using the links below. You can view the cookies used on this site here:

Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences, and generally improve the user experience. They can also help to ensure that adverts you see online are more relevant to you and your interests. The cookies used on this website have been categorised based on the categories found in the ICC UK Cookie guide.

Category 1: strictly necessary cookies

These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies, services you have asked for, like shopping baskets or eBilling, cannot be provided.

Category 2: performance cookies

These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.

By using our website, you agree that we can place these type of cookies on your device.

Category 3: functionality cookies

These cookies allow the website to remember choices you make (such as your username, language, or the region you are in) and provide enhanced, more personal features. For instance, a website may be able to provide you with local weather reports or traffic news by storing in a cookie the region in which you are currently located. These cookies can also be used to remember changes you have made to text size, fonts, and other parts of web pages that you can customise. They may also be used to provide services you have asked for such as watching a video or commenting on a blog. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites.

By using our website, you agree that we can place these type of cookies on your device.

Category 4: targeting cookies or advertising cookies

These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. They are usually placed by advertising networks with the website operator’s permission. They remember that you have visited a website and this information is shared with other organisations such as advertisers. Quite often targeting or advertising cookies will be linked to site functionality provided by the other organisations.

A list of all the cookies used on this website by category is set out below.

 

 

Links to other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites, and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

 

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

 

Google Analytics Data

The information accessable through the use of googles analyitics on this site can be found by using the link provided here: https://support.google.com/analytics/answer/6004245?hl=en

 

Controlling your personal information

You may choose to restrict the collection or use of your personal information in the following ways:

  • whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used by anybody for direct marketing purposes
  • if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at

We will not sell, distribute, or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.

 

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.

You can request a copy the infomation we hold on you and you can also request that we erase any personal data we hold about you.

You can do this by emailing our data protection officer using the following email address: datacontroller@scottishenergysaving.co.uk

This does not include any data we are obliged to keep for administrative, legal, or security purposes.

 

How we protect your data

Our website is securely encrypted using an up to date and valid SSL certificate. All information entered on this site is therefore secure from the point of entry in your browser to the point of collection on our website within all form feilds.

Information collected is not shared, sold or redistributed without your knowledge or express consent at any time.

 

What data breach procedures we have in place

Any data breaches detected or notified to us are recorded and notification of any breach(es) is reported to the ICO within 72 hours of discovery and the individual and or other party(ies) that may be affected.

You can notify us of any data protection breach(es ) or concerns by emailing our data protection officer using the following email address: datacontroller@scottishenergysaving.co.uk

If a breach is likely to result in a high risk to the rights and freedoms of individuals, we will notify those concerned directly without undue delay.

A ‘high risk’ means the threshold for notifying individuals is higher than for notifying the relevant supervisory authority.

The duty to notify an individual about a breach does not apply if:

  • We have implemented appropriate technical and organisational measures which were applied to the personal data affected by the breach;
  • We have taken subsequent measures which will ensure that any high risk to the rights and freedoms to individuals is no longer likely to materialize; or
  • It would involve disproportionate effort.

Where a communication of a breach would involve disproportionate effort, We will make the information available to individuals in another, equally effective way, such as via a public communication.

We will provide the following information to the ICO in the event of a serious breach.

  • the nature of the personal data breach including, where possible;
  • the categories and approximate number of individuals concerned;
  • the categories and approximate number of personal data records concerned;
  • the name and contact details of our data protection officer or other contact point where more information can be obtained;
  • a description of the likely consequences of the personal data breach; and
  • a description of the measures we have taken, or propose to take, to deal with the personal data breach and, where appropriate, of the measures we have taken to mitigate any possible adverse effects.

 

Information we will tell individuals who have been affected by the breach?

We will inform individuals about:

  • the nature of the personal data breach;
  • the name and contact details of the data protection officer (if relevant) or other contact point where more information can be obtained;
  • the likely consequences of the personal data breach; and
  • the measures you have taken, or propose to take, to deal with the personal data breach and, where appropriate, of the measures you have taken to mitigate any possible adverse effects.

What third parties we receive data from:

 

What automated decision making and/or profiling we do with user data:

Presently none all automated decisions where made such as what ads to serve to you and when is carried out by facebook / google or other advertisiers we have listed on this page.

Industry regulatory disclosure requirements:

Industry disclosures regrading finance and other related services can be found on the IWA or other regulatory body that we use in relation to any agreements that you may enter into with us /them or any finance companies you may enter into agreements with in exchange for goods or services from us.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

 

Source: BackupBuddy

 

Backups

Per the functionality of this plugin, backups of your website files and/or database are created and stored locally on your server and/or remotely on 3rd party servers based on the settings of this plugin. Archives can include, but are not limited to, file and database assets, including hashed passwords, 3rd party data, uploads and user information. These backups are stored to provide critical functionality of this plugin.

Cookies

Cookies are used to handle importing and restoring backups.

Plugin Settings

Some plugin settings ask for an email address or login credentials to 3rd party services. This is stored to provide functional features to the plugin.

Recent Activity

This plugin tracks dates, times and actions of successful and unsuccessful backups and remote data transfers. This is stored to help make the plugin better and assist with troubleshooting problems.

Logging

This plugin logs some personal information such as email addresses, usernames, database and server information. This is stored to help make the plugin better and assist with troubleshooting problems.

How long we retain your data

 

Backups

Backup retention is completely up to the website owner. This can vary from less than one minute to indefinitely.

Cookies

Cookies used during the restore/import process expire after 24 hours.

Plugin Settings

Settings are retained indefinitely until they are changed or removed manually.

Where we send your data

Backups

Backups are not automatically sent to remote destinations automatically, however backups can be configured to be sent to third-party servers.

How we protect your data via backups

Backup zip files are stored with hashed file names to prevent filename guessing and directory browsing is disabled.

What personal data we collect and why we collect it

 

Backups

Per the functionality of this plugin, backups of your website files and/or database are created and stored locally on your server and/or remotely on 3rd party servers based on the settings of this plugin. Archives can include, but are not limited to, file and database assets, including hashed passwords, 3rd party data, uploads and user information. These backups are stored to provide critical functionality of this plugin.

Cookies

Cookies are used to handle importing and restoring backups.

Plugin Settings

Some plugin settings ask for an email address or login credentials to 3rd party services. This is stored to provide functional features to the plugin.

Recent Activity

This plugin tracks dates, times and actions of successful and unsuccessful backups and remote data transfers. This is stored to help make the plugin better and assist with troubleshooting problems.

Logging

This plugin logs some personal information such as email addresses, usernames, database and server information. This is stored to help make the plugin better and assist with troubleshooting problems.

How long we retain your data backups

Backup retention can vary from less than one minute to indefinitely but usually does not exceed 60 days in most cases.

Cookies

Cookies used during the restore/import process expire after 24 hours.

Plugin Settings

Settings are retained indefinitely until they are changed or removed manually.

Backups

Backups are currently not automatically sent to remote destinations from this site, however backups can be configured to be sent to third-party remote servers in the future and will most likely be sent to and stored using one of the backup destination listed below for this website.

 

How we protect your data backups

Backup zip files are stored with hashed file names to prevent filename guessing and directory browsing is disabled.

What third parties we receive data from backup destinations

Backups can be sent to third-party destination servers, including but not limited to:

Links to third party privacy policies have been included.

 

Source: iThemes Sync

This web site uses a third party service to manage administrative tasks. If you leave a comment, submit personal information via a contact form, or otherwise exchange personal details with us, it is possible that we may use this service to manage that data. Please visit the iThemes Privacy Policy for more information regarding the way they handle their data.

 

Source: iThemes Security Cookies

Visiting the login page sets a temporary cookie that aids compatibility with some alternate login methods. This cookie contains no personal data and expires after 1 hour.

 

Security Logs

The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.

 

Who we share your data with

This site is scanned for potential malware and vulnerabilities by Sucuri’s SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri’s privacy policy.

 

How long we retain your data

Security logs are retained for 60 days.

 

Where we send your data

This site is part of a network of sites that protect against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site is shared with a service provided by ithemes.com. For privacy policy details, please see the iThemes Privacy Policy.

 

You may request details of personal information which we hold about you under the Data Protection Act 1998.

A small fee may be payable in line with requests that require extensive collation / production or devliery in line with the regulations. Other requests that are deemed to be ( excessive ) may be declined again in accordance to UK guidlines.

If you would like a copy of the information held on you, please write to:

Work
Data Protection Officer | Scottish Energy Saving Website - 16 Cromarty Campus, Rosyth, Dunfermline, United Kingdom, KY11 2WX

If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible at the above address. We will promptly correct any information found to be incorrect.

 

 

 

Share to any social network or email a friend now...