Information on this site is advertising in nature
Home About Services Contact

GDPR Compliance

Our commitment to protecting your data rights

Our Commitment to GDPR

Thames Window & Door is committed to complying with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This page explains how we handle personal data in accordance with these regulations and outlines your rights as a data subject.

Data Controller

Thames Window & Door acts as the data controller for personal information collected through this website and in the course of providing our services. We determine the purposes and means of processing personal data.

Contact details:

Thames Window & Door
Unit 14, Riverside Business Park
Windsor Road
Slough, SL1 2EJ
United Kingdom

Email: [email protected]

Lawful Basis for Processing

We process personal data under the following lawful bases as defined by GDPR:

Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal data we hold about you. We will provide this information free of charge within one month of receiving your request.

Right to Rectification

You have the right to request that we correct any inaccurate personal data we hold about you, or complete any incomplete data.

Right to Erasure

You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purpose for which it was collected.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us using the details provided above. We will respond to your request within one month. In certain circumstances, we may extend this period by up to two months, in which case we will inform you of the extension and the reasons for it.

We may request specific information from you to help us confirm your identity and ensure your right to access your personal data or to exercise any of your other rights.

Data Security

We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

Complaints

If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Website: ico.org.uk

Last updated: January 2024