2. Data Protection
Nwes Group is registered in accordance with and seeks to comply with the UK Data Protection Act 2018 (GDPR). We follow appropriate security procedures in the storage and disclosure of personal information to prevent unauthorised access by third parties. We also require those parties to whom we transfer personal information to comply with the same.
Types of data:
- Information from your browser/computer
We use Google Analytics and other software to provide information such as broken links on the website, number of website visits, page views, and information on what browsers and devices people are using to access our services. The software also detects location data using IP addresses. This data is not linked to any personal data and is just used to allow us to monitor trends and the performance of our website.
- Information you send us via email
If you enter into any correspondence via email to report a problem or ask a question, then we will retain the personal information you send us for the purposes of dealing with your enquiry and will not share the data with any third parties.
- Our online enquiry form
On our online enquiry form we ask for details such as address, telephone, email and area of need. This is solely for being able to contact you to discuss our support.
- Our online loan form
On the online loan form we ask for details such as address, email and financial outgoings. This data is used to assess your eligibility for a loan and your permission to undertake a credit search. Your data will not be used for any other purpose other than the processing of the loan enquiry, it will be shared with the Lender i.e. Start Up Loans/Croydon Loan Fund, Street UK whose platform we use to process loans. All loan documents will be stored securely on our server and will be held for the term of the loan. For any loan enquiries that do not proceed, all documentation including credit search will be destroyed after 3 months of the enquiry.
- Data encryption
Our website uses an SSL certificate which makes sure that there is an encrypted connection between the web browser and the server. This means that any personal information that’s entered on the website is encrypted when being transferred to the web server.
- Protection against cyber attacks/hackers
We have a firewall on our web server which is designed to inspect incoming traffic, weed out any malicious attacks and provides a first line of defence between a potential hacker and the data that we are hosting. We have carried out penetration testing where we get a third party company to attempt to hack the website. They report back if there are any vulnerabilities in the site (which there are none).
3. Scope of this policy
This Policy only applies to the use that we make of data provided to us via the Internet, SMS, in person and email.
4. Why we need to collect information from you
We use your information to
- Deliver our services (Business Advice, Business Training, Tenancy, Finance – Grants and Loans).
- Carry out personalised marketing and communications (if you have opted to receive these). We may use the information we collect about you to notify you from time to time about important new features and changes to our services or items we think you’ll find of interest.
- Obtain feedback from you on our services.
- Monitor the usage of the website, performance and trends so that we can improve our services
Subject to what we say below, we will not pass on your personal details to any third party, including site sponsors or advertisers, without your consent. In order to provide services to you we will need to provide your data to our funders and service providers.
We may provide aggregate statistics about our users, sales, traffic patterns and related site information to our third-party partners (if any), but these statistics will not contain any information about you from which you could be identified.
5. Security and possibility of international transfer
Please note that countries outside the EEA may not have the same level of protection as countries within the EEA, but we always demand that those parties to whom we transfer data adhere to the same security procedures that we follow ourselves. By submitting your personal information, you consent to such processing and transfers in connection with such orders, offers or services and for any other purposes to which you consent at the time you provide the information.
Since 26 May 2011, the law has stated that cookies can only be used by a website with the specific consent of its users. Cookies are small pieces of information that are issued to your computer when you enter a website. They are stored by your browser on your computer’s hard drive and can be used for a wide range of purposes, such as identifying your computer’s previous visits to this website, and to ascertain the most popular features of this website.
7. Links and third party advertising
8. Data Retention
9. Feedback, comments and suggestions