• My Account
  • Sign In
  • Compare Products
  • Create an Account
  • Cart
My Cart
UK Telephone +44 (0)1895 431421
Toggle Nav
Interface Specialists since 1986
Menu
Account

General Provisions for GDPR compliance and Privacy Policy

Privacy

This privacy policy describes how Keymat Technology Limited (trading as Storm Interface) uses and protects any personal information held by or provided to Storm Interface. These General Provisions for GDPR compliance and Privacy Policy are to be considered as ‘in addition to and supplemental to’ the Privacy Policy as specifically notified and applicable to the company’s web sites. Storm Interface is committed to ensuring that your privacy is protected. Should we ask you to provide personal information you can be assured that it will only be used in accordance with this privacy statement or as otherwise stated or documented at the time of collection. Storm Interface may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are aware of any changes.

Personal data is any information relating to an identified or identifiable living person. When collecting and using personal data, our policy is to be transparent about how we collect, hold and use personal data.

We collect and use personal data for several purposes. The means of collection, the legal justification for collection, use, disclosure and the retention of personal data for each purpose is set out in the relevant sections below.

Personal data is collected either directly from the individual concerned or from publicly available sources (such as internet searches, Companies House etc).

When we receive an individual’s personal data from any third party, we require that the third party provide all mandated notices and information to the individual about the intended use of their data and, when required, acquire the individual’s consent to the use of their personal data.

How long do we hold data for?

We retain the personal data collected by us for as long as is considered necessary for the purpose for which it was collected (including as required by applicable law or regulation).  Data may be held for longer periods where required by law or regulation and to establish, exercise or defend our legal rights and those of our customers.

Security

We take the security of the data we hold seriously. Staff are provided with briefings, and appropriate training regarding data protection, confidentiality and security procedures.

We have a framework of policies and procedures which ensure we regularly review the effectiveness of the measures in place to keep the data we hold secure.

Personal information held by us is stored on secure servers.

When you have chosen a password to enable access to certain parts of our website /.webstore you are responsible for keeping this password confidential. To protect your data we ask you not to share your password with anyone.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will use our best endeavours to protect your personal data, we cannot ensure the security of your data during transmission or transit to our sites or facilities. Any data transmission or transit is at your own risk. Once we have received your information, we will use our best endeavours, procedures and security features to prevent unauthorised access or use of your data.

Our IT network and servers are protected by firewalls, anti-malware applications, email surveillance and monitoring applications. Sensitive data is protected by limited personnel access and restricted by application of strict password policies and procedures. Our applications, utilities and operating platforms are subject to regular patching and secure data back-up procedures.

Our Personnel

We collect and retain personal data regarding our staff, employees and associates as part of our administration, management and business governance procedures. Personal data is collected and retained under the Legal Justification of Legitimate Interest.  

Why do we collect, process and retain data about our personnel?

Its collection and use facilitates HR and personnel management functions including but not limited to:

  • Performance assessments
  • Recording and provision of training and development programs
  • Disciplinary records
  • Remuneration, entitlements and benefit programs
  • Attendance records
  • Health and safety records
  • Compliance with employment laws, mandates and regulations
  • Provision of references
  • Provision of legally required data to government, law enforcement or judicial agencies

Our staff handbook provides additional detail and explanation of how personal data about our personnel is collected used and retained.

Applicants for Employment

When an individual applies for employment with Keymat Technology Limited, personal data is collected throughout the application, evaluation and employment process.  This personal data will be used for the purposes as detailed below:

  • Assessment of an individuals potential for employment by Storm Interface
  • To make informed management decisions and for administration / process oversight purposes.

How long do we hold this data for?

Personal data collected about applicants for employment is held for as long as necessary to fulfil the purpose for which it was collected, or for a maximum of 6 months after the time when those purposes no longer exist.

Our Customers

Personal data about active customers is collected and retained under the legal justification of Legitimate Interest. Data is collected and retained on the basis that customers contract Keymat Technology Ltd. (trading as Storm Interface) to supply goods and services. 

Why do we collect, process and retain data about our customers?

We hold personal data in relation to our customers and their key personnel as necessary to:

  • Effectively supply and deliver those goods and services to the customer
  • Conduct surveys to measure customer satisfaction, product quality and service delivery
  • Administer warranties and product maintenance programs.
  • Deliver product notices and safety related information.
  • Provide information about product changes, changing standards and mandates to maintain compliance
  • Receive and account for payments from customers for goods and services delivered.
  • Data may be held as required by law, mandate, regulation or governing professional body; including, but not limited to;
    • use during financial / tax audits,
    • anti-money laundering procedures,
    • anti-corruption procedures
    • proper business governance and to establish, exercise or defend our legal rights.

What data do we hold?

The data collected includes but is not limited to:

  • Your name, job title and company name if applicable
  • Your contact information including telephone numbers, email address, postal address and delivery address
  • Demographic information such as preferences, interests and market / industry sectors
  • Other information relevant to customer surveys
  • Banking and account details required to facilitate processing of credit references, statements, invoices, receipt of payments and the provision of credits
  • Records of trading history
  • Identification of key personnel, titles and roles within your organisation to facilitate the specification and supply of products and services.
  • We DO NOT collect, retain or process Credit / Debit card data.

How long do we hold data for?

We retain the personal data processed by us for as long as is considered necessary for the purpose for which it was collected (including as required by applicable law or regulation).  Data may be held for longer periods where required by law or regulation and to establish, exercise or defend our legal rights.

Marketing Materiel Directed to Customers, Prospective Customers and Other Interested Parties

The Stay-in-Touch Program

Storm Interface uses your personal data responsibly.  A great deal of care is taken to ensure that any marketing materiel we send to you is relevant and concise. Marketing materiel sent by email, social media or other means is limited in its frequency and only sent to those who have requested contact or information from our company. Personal data collected and retained to maintain and operate the Stay-in-Touch program is done so under the legal justification of Consent.

To continue receiving news and information via Storm’s Stay-in-Touch program it will be necessary for you to opt-in. Click here to Opt-in.

Here’s some detailed information to help you make that decision to Opt-In.

Keymat Technology Ltd (trading as Storm Interface) offer organisations and individuals over the age of eighteen (18) years an opportunity to receive information via the Stay-in-Touch program. The program provides news and information about Storm Interface, the markets or sectors in which the company operates, its products, services and activities.  Such information may be provided by various means including but not limited to emails, printed media, electronic media, telecommunications or social media.

Storm Interface will ensure those contact records are retained and maintained in accordance with all applicable legal mandates and regulations including those governing the protection and proper use of personal data. Storm Interface may share personal data with third parties or external agencies only in accordance with applicable personal data protection regulations or as may be lawfully demanded by law enforcement agencies, required under applicable legal mandates or commanded by judicial court order.

Suppliers

We collect and process personal data about our suppliers, potential suppliers, subcontractors, and individuals associated with them. The data is held to manage our business relationship and to contract and receive products and/or services from them.

Keymat Technology Ltd (trading as Storm interface) acting as the controller and processor of such information, will do so under the legal justification of Legitimate Interest.

Why do we collect, process and retain data about our suppliers?

  • To facilitate administration and management of the receipt of goods and services from suppliers.
  • To assist in the selection of suppliers
  • To maintain records for quality assurance
  • To process complaints, warranty claims and product returns to the supplier.
  • To process and account for payments to suppliers.
  • Data may be held as required by law, mandate, regulation or governing professional body; including, but not limited to;
    • use during financial / tax audits,
    • anti-money laundering procedures,
    • anti-corruption procedures
    • proper business governance and to establish, exercise or defend our legal rights.

What data do we hold?

The data collected includes but is not limited to:

  • The supplier’s name, job title and company name if applicable
  • The supplier’s contact information including telephone numbers, email address, postal address and delivery address
  • Demographic information such as skills, abilities, resources, capabilities and market  / industrial sectors.
  • Other information relevant to supplier surveys and performance analysis
  • Banking and account details to facilitate processing of credit references, statements, invoices, payments and the processing of credits.
  • Identification of key personnel, titles and roles within the supplier’s organisation to facilitate the specification and receipt of products and services.
  • Records of trading history

How long do we hold data for?

We retain the personal data processed by us for as long as is considered necessary for the purpose for which it was collected (including as required by applicable law or regulation).  Data may be held for longer periods where required by law or regulation and to establish, exercise or defend our legal rights.

Business Contacts

We collect and hold personal data from persons encountered during general business activities. These business contacts include, but are not limited to potential and past customers, as well as potential and past employees, competitors, academics and personnel with expertise in applicable materials, technologies, markets, or industry sectors, potential end users, or beneficiaries of products and technologies developed or offered by Storm Interface, or private individuals with interest or curiosity about our products or activities, journalists, students, or those who are otherwise uncategorised in this document.

Personal data about business contacts is collected and retained under the legal justification of Legitimate Interest and/or Consent.

What data do we hold?

The data collected includes but is not limited to:

  • Name, job title and company name if applicable
  • Contact details including telephone numbers, email address and postal address
  • Demographic information such as preferences, interests and market / industry sectors
  • Records of contact history, including notes of discussions and details of skills, expertise and /or background

Why do we collect, process and retain data about our business contacts?

Where personal data about business contacts is held, it is used for several purposes including, but not limited to, the following:

  • Promote products and services from Storm Interface
  • Future access to advice, information, reference material, research data or specialist expertise
  • To respond to specific requests received or commitments made
  • To maintain a beneficial, supportive or professional / social relationship by mutual consent
  • To support and protect the interests of our personnel, customers, suppliers, associates and partners

How long do we hold data for?

We retain the personal data processed by us for as long as is considered necessary for the purpose for which it was collected. Data may be held for longer periods where required by law or regulation and to establish, exercise or defend our legal rights.

Website Users

There is a separate policy for website users which can be found here.

Sharing Personal Data

We will only share personal data with others when we are legally permitted to do so.  When we share data with others we put in place contractual arrangements and security mechanisms to protect personal data and to comply with our data protection, confidentiality and security standards.

Personal data held by us may be shared with:

  • Third party organisations that provide applications/functionality, data processing or IT services to us. We use third parties to support us in providing our services and to help provide, maintain and manage our IT systems.  For example, providers of information technology, cloud based software as a service providers, identity management, website hosting and management, data analysis, data back-up, security and storage services.  The servers powering and facilitating that cloud infrastructure are located in secure data centres around the world, and personal data may be stored in any of them.
  • Third party organisations that otherwise assist us in providing goods, services or information.
  • Auditors and other professional advisers.
  • Law enforcement or regulatory agencies or those required by law or regulations.

Occasionally, we may receive requests from third parties with authority to obtain disclosure of personal data, such as to check that we are complying with applicable law and regulation, to investigate an alleged crime, to establish, exercise or defend legal rights.  We will only fulfil requests to provide personal data where we are permitted to do so in accordance with applicable law or regulation.

Individual's Rights

Individuals have certain rights over their personal data.  Data controllers are responsible for fulfilling these rights as follows:

  • Individuals may request access to their personal data held by us as a data controller.
  • Individuals may request us to rectify personal data submitted to us
  • Individuals may request that we erase their personal data
  • Where we process personal data based on consent, individuals may withdraw their consent at any time by contacting us or clicking on the unsubscribe link in an email received from us.
  • Individuals may have other rights to restrict or object to our processing of personal data and the right to data portability.
  • Individuals may request information about, or human intervention into, any automated data processing that we may undertake.

You may request details of personal information which we hold about you under the Data Protection Act 1998. If you would like a copy of the information held on you please write to Storm Interface, 1 Waterside Court, Waterside Drive, Langley, Berkshire, SL3 6EZ, England or email us at gdpr@storm-interface.com

If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.

If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at gdpr@storm-interface.com.

Complaints

We hope that you won’t ever need to, but if you do want to complain about our use of personal data, please send an email with the details of your complaint to gdpr@storm-interface.com. We will look into and respond to any complaints we receive.

You also have the right to lodge a complaint with the UK data protection regulator, the Information Commissioner’s Office (“ICO”). For further information on your rights and how to complain to the ICO, please refer to the ICO website https://ico.org.uk/concerns

Changes to our privacy Statement

Updates to this privacy statement will appear on this website.  This privacy statement was last updated on 11th May 2018