DS Graphics Ltd

Privacy Notice

DS Graphics Ltd takes your data privacy seriously. We are an independent graphic design and vehicle wrapping company focussed on delivering quality results and services to our clients. In order to provide you with our services we collect and use personal data which means that we are a ‘Data Controller’ and we are responsible for and committed to complying with Data Protection Laws and the General Data Protection Regulations (GDPR).

In this Privacy Notice, we want to inform you about what information we collect, how we use it and what rights individuals have in relation to the collection and processing of their personal data.


Our Contact Details:

D S Graphics Ltd

Email: pauline@dsgraphicsscotland.co.uk
Tel: 07878084848
If you have any questions in respect of this Privacy Notice or how we manage your personal data, please contact using the above details.


Who’s Personal data do we collect and process?

We process information about our clients, suppliers, professional advisors or individuals making an enquiry about our services.


What personal data do we collect and process?

In the course of working with you, we can collect the following types of data:

  • General contact details such as, Name, Address, email address, Telephone number
  • Details of your business activities
  • Details of the Goods and Services provided to you
  • Contact details of vehicle keepers when delivering our vehicle wrapping service
  • Financial Details for payment
  • Information obtained through our use of cookies (please see our Cookie Policy)
  • Your marketing preferences


Special Categories of Personal Data that we collect:

We do not collect special categories of data

How we collect your information

In most cases we collect your data directly from you. We collect data and process it when you:

  • Complete an online ‘contact us’ form
  • Provide information during a meeting on site or virtual
  • Speak to us on the telephone to discuss or use our services
  • Email or write to us to enquire about or use our services or provide feedback
  • Via Captured CCTV images recorded on our premises

We also receive your data indirectly from the following sources:

  • Social Media Sites including LinkedIn
  • Public sources – demographic data, Market Research
  • Credit Agencies and publicly available company data
  • Or if you are an individual who is or who has control of a vehicle for which our services have been commissioned, your organisation may provide your contact details to arrange delivery of that service.


Why do we collect your information?

Where we collect and process personal data, we are required to identify both the purpose and our legal basis for doing so. There are 6 possible legal bases which are:

Consent – where we have your consent for processing your personal data for one or more specific purpose

Contract – where the processing is necessary for the performance of a contract or potential contract with you.

Legal Obligation – The processing is necessary for our compliance with a legal obligation

Vital Interests – Where our processing is necessary in order to protect the vital interests of the data subject or another natural person

Public Interest – Where the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority

Legitimate Interests – Where the processing is necessary for the purposes of our legitimate interests except where such interests are overridden by your interests or fundamental rights and freedoms.

Our various purposes and legal basis for the information we collect, are detailed below:

To understand your requirements prior to entering into a contract of service with our customers The processing is necessary for the performance of an anticipated Contract
To understand your requirements to ensure that any contract of service meets our customer’s needs The processing is necessary for the performance of a Contract with you
To fulfil our contract with you and provide you with the agreed services therein The processing is necessary for the performance of our Contract with you
To manage our business operations and comply with any internal policies and procedures It is in our legitimate interests to use your personal information to ensure that we provide and adapt our services
To notify you about changes to our service It is in our Legitimate Interests to use your personal information to keep you informed about any changes that may affect you
For Marketing of similar services to existing customers It is in our legitimate interests to use your personal information for marketing purposes where the services being marketed are relevant to you.
For electronic Marketing of services to new customers via personal business email addresses It is in our Legitimate Interests to use personal business email addresses for marketing purposes where we can support individual’s rights
For electronic Marketing of services to new customers We rely on Consent for direct marketing to individuals
To control access to the premises and ensure the security of the building, our property and safety of our employees and visitors It is in our Legitimate Interests to protect the security of our premises and safety of our employees and visitors
To prevent, deter and if necessary, investigate unauthorised access, including unauthorised access to secure premises and protected areas. It is in our Legitimate Interests to prevent, deter and investigate unauthorised access to premises or information
To prevent, detect and investigate a theft of equipment or assets owned by the company, visitors or employees or threats to the safety of such employees and visitors. It is in our Legitimate Interests to prevent, detect and investigate theft of property belonging to our business, our employees or our visitors.
To comply with our legal obligations, law enforcement, court and regulatory bodies requirements To comply with our Legal Obligations
To identify and prevent fraud It is in our Legitimate Interests to act as a responsible business


Where we rely on your consent you have the right to withdraw this consent at any time by contacting us.


Legitimate Interests – Where the processing of personal data is based on our Legitimate Interests, it is to deliver and improve on our service and security and maintain accurate records. It is also in an aim to prevent fraud or illegal activity in favour of the wellbeing of our customers, shareholders and employees.

Who we share your information with?

  • From time to time and in the general course of our business, we may share your personal information with some of the following:
  • Our Accountant or Payment Service Providers
  • Regulators and Governing bodies, Lawyers and other Professional Services
  • Software and Cloud storage providers
  • Fraud detection Agencies
  • Police and Law Enforcement agencies where reasonably necessary for the prevention or detection of crime
  • Selected Third Parties in connection with any future sale, transfer or disposal of our business

International data transfers

Although we don’t transfer your information outside of the UK, with today’s modern technology including Cloud Storage and software, some recipients of your personal data can be located outside your country or have offices in countries where data protection laws may provide a different level of protection than the laws in your country. Where this is the case, we make sure that additional safeguards are in place such as ensuring that those countries have a decision of adequacy or have included standard contract clauses in their terms to support the protection of your data.


Automated decision-making or Profiling

We do not process personal data for automated decision making or profiling
How Long do we keep personal data for?
We will retain personal data in accordance with legal and regulatory requirements and for no longer than is necessary. We maintain and review a detailed retention policy which documents how long we will hold different types of data. The time period will depend on the purpose for which we collected the information. This is generally 12 months for most types of data unless we have a legal obligation to retain it for longer and regardless it is never held on an indefinite basis.

Your Rights as a data subject
As a data subject, you have rights in relation to your personal data. These are:

Access – You have the right to request details of personal information held or processed and to copies of this data. We do not usually charge for this service.
Rectification – You have the right to request that any information be corrected that you believe is inaccurate or to complete any information that you believe is incomplete.
Erasure – You have the right to request that we erase your personal information with some exceptions.
Restrict Processing – You have the right to request that we restrict the processing of your personal data under certain circumstances
Object to Processing – You have the right to object to our processing of your data, under certain conditions.
Data Portability – In some circumstances, you have the right to request that we transfer the data that we have collected to another organisation or directly to you.

You also always have the Right to Withdraw Consent where you have previously provided this.

To exercise any of these rights, or if you have a complaint please contact us.

If after contacting us you remain unhappy with the outcome, you also have the right to complain to the Supervisory Authority. Where you wish to report a complaint or feel that we have not addressed your concern in a satisfactory manner, you may contact the Information Commissioner’s Office at:

Information Commissioners Office
Wycliffe House
Water Lane

Online: https://ico.org.uk/global/contact-us/
Helpline: 0303 123 1113


Contractual Obligations and Consequences

In some circumstances, the provision of personal data is partly required by law (for example, tax regulations, employment and legal obligations) or can also result from contractual provisions. This means that sometimes we cannot complete our agreed service without that information and so if you aren’t able to provide it or ask that we delete it, there is a possible consequence that our contract would need to be cancelled.


Cookies & similar technologies

When you visit our Website, we use cookies and similar technologies to provide you with a better, faster and safer user experience or to show you personalised advertising. Cookies are small text files that are automatically created by your browser and stored on your device when you visit or use the Website. For full information on our use of cookies and how to manage them, please see our Cookie Policy

To learn more about how to manage your browser cookie settings in general please see www.allaboutcookies.org

When clicking on external links via our website, or finding us via social media platforms, you are visiting or redirected to the domain of those websites. We have no control over the privacy settings on these websites and the cookies they set, so please bear in mind that you should set your preferences in line with their own policies and cookie controls separately.


Data security

We aim to protect your personal data through technical and organisational security measures to minimise risks associated with data loss, misuse, unauthorised access and unauthorised disclosure and alteration.
We store customer records in cloud-based services and data centres which have controlled and restricted access. We operate records management and Information security policies which detail physical security, cloud storage security monitoring, access control and password security measures. We also maintain and use anti-virus and malware software and firewalls.


Changes to our Privacy Notice

DS Graphics Ltd keep our Privacy Notice under regular review. This Privacy Notice was last updated on 10th September 2020.