Privacy Policy

Sprint Global IT > Privacy Policy

Home » Privacy Policy

Who we are

Sprint Global IT are committed to protecting your personal data in line with the relevant legislation (“Data Protection Law”). The relevant legislation includes the General Data Protection Regulation (EU 2016/679) and the UK Data Protection Act 2018, as well as other potentially supporting legislation.

Why this policy is important

This policy is intended to provide information about how we will use (or “process”) personal data about individuals including our current, past and prospective customers, consultants, suppliers and other third parties as well as visitors to our website. It also covers the way in which Sprint Global IT will handle personal data when it has access to the personal data in circumstances where a customer is the data controller and Sprint Global IT the data processor for its customer. This will arise in respect of personal data processed pursuant to a service level agreement or other contract with our customer.

Responsibility for data protection

Sprint Global IT has appointed Jon Barns to oversee its role as Data Protection Manager (DPM), who will deal with all requests and enquiries concerning Sprint Global IT use of your personal data (see section on Your Rights below) and endeavour to ensure that all personal data is processed in compliance with this policy and Data Protection Law.

Jon Barns may be contacted by:

Email: info@sprintintegration.co.uk

Telephone: 01702 209966

Post: Ryan House, 18-19 Aviation Way, Southend on Sea, Essex, SS2 6UN

Why Sprint Global IT needs to use personal data

In order to carry out its ordinary duties to clients, Sprint Global IT may need to process a wide range of personal data about current, past and prospective staff and customers as part of its daily operation.

Sprint Global IT will need to carry out some of this activity in order to fulfil legal rights, duties or obligations – including those under a contract with its customers.

Other uses of personal data will be made in accordance with Sprint Global IT’ legitimate interests, provided that these are not outweighed by the impact on individuals and provided it does not involve special categories of personal data.

Sprint Global IT expects that the following uses may fall within the category of its “legitimate interests”:

To provide IT managed services;
Maintaining relationships with customers and the business community;
For the purposes of management planning;
For security purposes; and
Where otherwise reasonably necessary for Sprint Global IT’ purposes, including to obtain appropriate professional advice and insurance.

Types of personal data obtained by Sprint Global IT

This will include by way of example:

names, addresses, telephone numbers, e-mail addresses and other contact details;
bank details and other financial information;
passwords;
access to personal data held by customers whilst providing them with IT managed services.

How Sprint Global IT collects data

Generally, Sprint Global IT receives personal data from the individual directly in the ordinary course of interaction or communication (such as verbally, by e-mail or by written documents).

However, in some cases personal data may be supplied by third parties (for example an employer, customer either directly or by giving Sprint Global IT access to the IT systems, or other companies or authorities working with that individual).

Data collected through the Sprint Global IT website

Sprint Global IT may collect the following information from visitors to its website:

IP addresses and information about the location of the visitor
the way that a visitor uses the website, including the pages viewed, dates, times and duration
data to show where visitors navigated to or from our website and searches made on our website.

This data is used to enable Sprint Global IT to:

run the website ensuring that it works properly
improve the information on the website
maintain the websites security

Cookies are a piece of data which a website sends to a user’s computer. It is stored on the user’s computer and can be used to collect information on their site usage. Sprint Global IT use cookies to identify how many users visit each page of its website so that it can improve the websites value to its visitors. Sprint Global IT does not use cookies in any way which would allow it to identify visitors to its website. If you want to block cookies, then you can do so through your web browser or through other software but in doing so you may find that you will be unable to visit some or all of the Sprint Global IT website.

Who has access to personal data and who Sprint Global IT shares it with

Occasionally, Sprint Global IT will need to share personal information with third parties, such as professional advisers (lawyers and accountants) or relevant authorities such as the police.

For the most part, personal data collected or accessed by Sprint Global IT will remain within the company and will be processed by appropriate individuals only in accordance with access protocols (i.e. on a “need to know” basis). Sprint Global IT will where appropriate, ensure that their personnel access or Process Personal Data only for the purpose of performing services to customers in accordance with instructions given by the customer to Sprint Global IT from time to time.

In accordance with Data Protection Law, some of Sprint Global IT’ processing activity is carried out on its behalf by third parties, such as cloud services and storage providers. This is always subject to undertakings from such third parties that personal data will be kept securely and only in accordance with Sprint Global IT’ specific direction.

Sprint Global IT shall not cause or allow Personal Data to be transferred and/or processed in a county or territory which is outside of the European Economic Area without prior written consent.

How long Sprint Global IT keeps personal data

Sprint Global IT will retain personal data securely and only in line with how long it is necessary to keep for a legitimate and lawful reason.

If you have any specific queries about how this policy is applied or wish to request that personal data that you no longer believe to be relevant is considered for erasure, please contact the DPM. However, please bear in mind that Sprint Global IT may have lawful and necessary reasons to hold on to some data.

Security

Sprint Global IT has implemented and shall maintain appropriate technical and organisational security measures, processes and controls to safeguard all Personal Data processed by them against unauthorised and unlawful processing and accidental loss, disclosure or destruction.

Notify a customer of any data breach that takes place in accordance with the paragraph dealing with breach of notification below.

IT managed services

To enable Sprint Global IT to provide IT managed services, customers will have to provide access to their IT systems with the result that Sprint Global IT will have access to personal data held by the customer. In such circumstances, Sprint Global IT will:

Ensure that any such data will only be processed by Sprint Global IT’ staff on a need to know basis.
Ensure that the personal data remains within Sprint Global IT but where Sprint Global IT share the data with third parties such as cloud service and storage providers, it is done so on an undertaking from such third parties that personal data will be kept securely and only in accordance with Sprint Global IT’ specific direction. If requested by a customer, Sprint Global IT will supply to the customer evidence that the third party will comply with their obligations under the General Data Protection Regulations.
Not cause or allow the personal data to be transferred and/or processed in a country or territory outside of the European Economic Area without prior written consent from the customer.
Maintain suitable and adequate security in accordance with the provisions of this agreement.

Confidentiality

Sprint Global IT acknowledges that in the provision of its IT managed services, it may have access to a customer’s confidential information concerning their business affairs, customers, clients or suppliers.

Sprint Global IT undertakes that it shall not at any time disclose to any person any confidential information belonging to the customer and shall ensure that its staff, officers, representatives or advisers to whom it discloses a customer’s confidential information complies with this clause.

Sprint Global IT may however disclose confidential information to the extent that such confidential information is required to be disclosed by law, by any government or other regulatory authority or by a Court or other authority of competent jurisdiction provided that, to the extent it is legally permitted to do so, it gives the customer as much notice of such disclosure as possible.

Breach notification

Sprint Global IT shall notify a customer when it becomes aware of or suspects that a data breach has taken place. Such notification will be made within 24 hours of Sprint Global IT becoming aware of the breach save where the breach comes to the attention of Sprint Global IT during a weekend or bank holiday when the notification will be made to the customer by 10am or the next business day. The notification will include a description of the data breach, the date and time of the breach, the type of data affected by the breach, an explanation of how the breach occurred, the number of data subjects concerned and details of how and when Sprint Global IT first becomes aware of the breach. In circumstances where there has been a breach Sprint Global IT will provide all reasonable advice and assistance to the customer involved in a timely manner.

Your Rights

Consent

Where Sprint Global IT is relying on consent as a means to process personal data, any person may withdraw this consent at any time. Please be aware however that Sprint Global IT may have another lawful reason to process the personal data in question even without your consent. That reason will usually have been asserted under this Data Protection and Confidentiality provision or may otherwise exist under some form of contract or agreement with the individual (for example: an employment contract).

Data accuracy and security

Sprint Global IT will endeavour to ensure that all personal data held in relation to an individual is as up to date and accurate as possible. Individuals must please notify the DPM of any changes to information held about them.

An individual has the right to request that any inaccurate or out-of-date information about them is erased or corrected (subject to certain exemptions and limitations under Act): please see above.

Sprint Global IT will take appropriate technical and organisational steps to ensure the security of personal data about individuals, including policies around use of technology and devices, and access to company systems. All staff will be made aware of this policy and their duties under Data Protection Law and receive relevant training.

Queries and complaints

Any comments or queries on this policy should be directed to the DPM.

If an individual believes that Sprint Global IT has not complied with this policy or acted otherwise than in accordance with Data Protection Law, they should notify the DPM. An individual can also make a referral to or lodge a complaint with the Information Commissioner’s Office (“ICO”), although the ICO recommends that steps are taken to resolve the matter with Sprint Global IT as the Data Controller or Processor before involving the regulator.

Contact Us

Navigation