At OA Web Services, we are committed to protecting the privacy and security of our users’ and customers’ personal information. This Privacy Policy explains how we collect, use, and safeguard the personal information we collect through our website and services. For terms governing the use of our website, please refer to our Terms and Conditions.

Information We Collect

OA Web Services collects various types of personal information from users and customers, including:

Names
Email addresses
Payment information
Contact details
Usage data (e.g., IP addresses, browser types, pages visited)

How We Use Your Information

We use and process the personal information we collect for the following purposes:

To provide and manage our web design services
To process transactions and send related information, such as invoices
To respond to customer enquiries and provide support
To send promotional communications, subject to user preferences
To improve and personalise the user experience on our website
To analyse website usage and perform market research

Legal Basis for Processing Data

We process your personal data based on the following legal grounds:

Consent: Where you have given us explicit consent to process your data.
Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
Legal Obligation: Where processing is necessary for compliance with a legal obligation.
Legitimate Interests: Where processing is necessary for our legitimate interests, provided your interests and fundamental rights do not override those interests.

Information Sharing and Disclosure

OA Web Services may share personal information with third parties in the following circumstances:

With service providers who perform services on our behalf (e.g., payment processing, email delivery, web hosting)
When required by law, regulation, or legal process
To protect the rights, property, and safety of OA Web Services, our users, or others
In connection with a merger, acquisition, or sale of assets

Security Measures

We employ various security measures to protect your personal information, including secure server infrastructure, encryption technologies, and access controls.

Data Retention

We retain personal information for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. The criteria for determining retention periods include:

The duration of the customer relationship
Legal and regulatory requirements
The necessity of the information for protecting our interests or resolving disputes

Cookies and Tracking Technologies

Our website uses cookies and other tracking technologies to enhance the user experience, gather analytics data, and deliver personalised content and advertisements. Users can control the use of cookies through their browser settings.

Your Rights and Choices

Under GDPR, you have the following rights regarding your personal data:

Right to Access: You have the right to request access to your personal data.
Right to Rectification: You have the right to request the correction of inaccurate or incomplete personal data.
Right to Erasure: You have the right to request the deletion of your personal data under certain conditions.
Right to Restrict Processing: You have the right to request the restriction of processing of your personal data under certain conditions.
Right to Data Portability: You have the right to request the transfer of your personal data to another organisation, or directly to you, under certain conditions.
Right to Object: You have the right to object to the processing of your personal data under certain conditions.
Right to Withdraw Consent: If we are processing your personal data based on your consent, you have the right to withdraw your consent at any time.

To exercise these rights, please contact us using the information provided below.

International Data Transfers

If we transfer your personal information outside the UK or European Economic Area (EEA), we will ensure it is protected by appropriate safeguards, such as standard contractual clauses approved by the European Commission or other legally acceptable mechanisms.

Data Breach Response

In the event of a data breach that compromises your personal information, we will promptly notify you and relevant authorities as required by applicable laws. Our data breach response plan includes:

Immediate investigation and containment of the breach
Assessment of the breach impact
Notification to affected individuals and authorities
Measures to prevent future breaches

Legal Compliance

We comply with the General Data Protection Regulation (GDPR), the UK Data Protection Act, and other applicable data protection and privacy laws and industry best practices for data security and privacy management.

ICO Registration

OA Web Services is a subsidiary of Outsource Assist Ltd, and both companies share the same Information Commissioner’s Office (ICO) registration number: ZB617946.

Third-Party Websites & Limitation of Liability

Our website may contain links to third-party websites. This Privacy Policy only applies to OA Web Services, and we are not responsible for the privacy practices of other websites which may collect your information.

We make reasonable efforts to ensure the accuracy of information on our website. However, we make no guarantees. We will not be liable for any losses or damages in connection with the use of our website or services.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: info@oawebservices.co.uk
Address: 1 Dukes Passage, Brighton, East Sussex, BN1 1BS
Telephone: 01273 039777

Updates to This Policy

This Privacy Policy may be updated from time to time. We encourage you to review it periodically for any changes.

Last updated: 22 October 2024