SepSolve Analytical Ltd (SepSolve) recognises that privacy is important when communicating with customers, suppliers and other third parties. This notice explains how we collect, store, use and share personal data as governed by the EU General Data Protection Regulation (GDPR).
GDPR aims to prevent security breaches and the loss of personal data by any organisation that holds or processes data.
This notice is issued by SepSolve and is also applicable to the subsidiary companies: Markes International GmbH, Markes International, Inc., Markes International Ltd, and Markes Instruments (Shanghai) Co., Ltd.
It is addressed to individuals outside our company with whom we interact.
Under GDPR SepSolve Analytical Ltd is the Data Controller.
We are a specialist manufacturer of scientific instrumentation for the detection of trace-level volatile and semi-volatile organic compounds. We operate globally through a network of regional offices, the locations of which can be seen on the 'Contact us' page of our website.
We have appointed a Data Privacy Manager to oversee our compliance with data protection law. Our Data Privacy Manager can be contacted at:
Markes International Ltd., Gwuan Elai Medi Science Campus, Llantrisant, CF72 8XL
The type and categories of personal data which we may collect include:
SepSolve will ensure that the personal data it collects will be adequate, relevant and not excessive for the purposes required. It will be kept accurate and up-to-date based on information provided, and to the best of our ability thereafter.
SepSolve does not knowingly collect sensitive personal information (as defined under GDPR) from customers, suppliers or third parties, and you must not submit such information to us. Sensitive information inadvertently submitted to us will be processed so far as is necessary for the purposes of deleting it.
We do not intend to process personal data from any data subject under the age of 18, and we do not knowingly collect such data. If any such data comes to our attention we will delete it.
Examples of sources from which we may collect your Personal Data include the following:
From time to time we may receive information about you from third parties. These may be media partners, exhibitions, conferences, suppliers & other business partners. It is also possible that third parties with whom we have had no prior contact may provide us with information about you. Generally, this information will be your name and contact details, but may include additional information about you that they provide to us.
In some circumstances we will have a legitimate reason for processing the data even if you have not consented to sharing it, e.g. to fulfil an order process; where you have infringed (or potentially infringed) any of our legal rights; fraud prevention, etc.
If we receive information about you from a third party in error and/or we do not have a legal basis for processing that information, we will delete your information
We want to give you the best experience when interacting with SepSolve. The data we hold about you helps us provide you with the best possible service level and ensures that we are able to fulfil any contractual obligations. We will use your data for a number of reasons, including:
In line with the processing conditions set out under GDPR, SepSolve will process your data under one lawful condition:
SepSolve will review all data processing regularly to ensure that our interests are not overridden by those of the data subjects.
In all cases data subjects have a number of rights which can be exercised regarding their data (see below, 'What are your individual rights?')
If we share your information (see below, 'Who else receives your information?'), it is on the basis of this same lawful condition.
Under GDPR and the method of lawful consent which we are using to process your data, you have the following rights:
How to exercise that right
You have the right to be informed about the collection and use of your data.
This privacy notice informs you about the collection and use of your data. It is available on our website, and you may request a written copy of the notice from the DPO.
You have the right to request access to your personal data.
Make a request for access, verbally or in writing, from the DPO.
You have the right to rectification if you believe the personal data we hold is inaccurate.
Make a request for rectification, verbally or in writing, from the DPO.
You have the right to erasure (right to be forgotten) or to restrict processing.
Make a request, verbally or in writing, from the DPO.
In some circumstances, e.g. order fulfilment, to comply with HMRC or similar, immediate erasure will not be possible. In this case you will be informed of the reasons.
You have the right to object.
You have an absolute right to object to your data being used for direct marketing. Our marketing communications use easily-found ‘opt-out’ buttons for this reason. Alternatively you may make an objection, verbally or in writing, to the DPO.
You have rights relating to Automated Decision Making.
We use data profiling on our website (see 'Our use of automated profiling') below. We only use data profiling as part of our marketing operations, which you may opt out of as explained above. We do not use it for any other automated decision-making process.
We share your data with a number of third parties in order to supply you with our services. These are our data processors, and we have contractual processing agreements in place with them that are reviewed on a regular basis. Only adequate, relevant and limited information is used for each purpose. Key data processors are:
We use Microsoft’s Office 365 as a third-party email provider to store emails you send us.
Our web developer and hosting company is SpinDogs Ltd. Our website automatically logs the IP address you use to access our website.
Excellence IT are our third-party IT service provider.
Google collects information including IP addresses and information from cookies through our use of Google Analytics on our website. Google Analytics is used for tracking the number of visits that our different webpages receive. We use this information for analytical purposes only.
For further information regarding cookies, see below ('Cookies and similar technologies')
We use Salesforce for our customer relationship management and marketing automation.
We use Creditsafe to assess credit and risk where we are entering into a financial arrangement with a third party.
Cleardata provides us with a document scanning service.
The Maltings (Cardiff, UK) provides us with a Document Management Service to store archived material that must be kept for statutory periods, i.e. HMRC, VAT records, etc.
We may share your information with our subsidiary companies where it is in our legitimate business interest to do so. We may share your information with other group companies if legally required to do so in the execution of our business.
Contact data for subsidiary companies and our parent company can be found on our website https://www.markes.com/Contact-Us.aspx
Where we have legitimate business interests, the personal data we have collected from you may be transferred to other companies outside the UK and the European Economic Area. We impose contractual obligations with these companies to ensure that our legitimate interests are not overridden by your interests, rights or freedoms. Examples of this would include:
We will retain your personal data only for as long as is necessary in connection with the purposes set out in this notice, unless applicable law requires a longer retention period (i.e. to comply with HMRC requirements or to defend/exercise any legal rights).
If there is no legislative requirement to retain your data, and you are not a customer of SepSolve or its subsidiaries, we will typically delete your personal data three years after your last contact with us.
We take appropriate technical & organisational measures to secure your personal data and to protect it against unauthorised or unlawful use and accidental loss or destruction. These include:
Transmission of information over the internet may not be entirely secure. If you submit personal data to us in this way you do so entirely at your own risk, and SepSolve are not responsible for any liabilities, costs or any other form of loss suffered by you as a result of this decision.
Data that we share with key data processors listed above is stored on servers within the European Economic Area, apart from that stored by Google Inc., which is stored in the United States of America. Currently, USA is not subject to an adequacy decision by the European Parliament; however, Google has self-certified its compliance with the EU-US Privacy Shield https://www.privacyshield.gov/welcome, which is an approved mechanism under GDPR.
Data that is shared with other business partners may be shared outside the EEA where it is required for our legitimate business interest as detailed above (see 'Who else receives your data?').
A ‘cookie’ is a data file that is sent from a website you visit to a browser to record information about users for various purposes.
You can reject some or all of the cookies we use on or via our website by changing your browser settings, but doing so can impair your ability to use our website or some (or all) of its features. For further information about cookies, including how to change your browser settings, please visit www.allaboutcookies.org, or see our cookies policy.
Please note that this privacy notice is reviewed periodically and may be amended from time to time. We will update this notice accordingly with a new effective date stated at the beginning of it.
If we make major changes to our privacy notice, or intend to use your data for a new purpose other than the purposes for which we originally collected it, we will notify you by posting a notice on our website.
We’d like the chance to resolve any complaints you have, but you also have the right to complain to the UK data protection regulator (the ICO) about how we have used your personal data.
Their website is https://ico.org.uk/for-the-public/raising-concerns.
Cookies are small text files that are placed on your computer by websites that you visit with your web browser. They are widely used across the internet in order to make websites work, or work more efficiently, as well as to provide information about how the website is used.
We use the following cookies on our website: