We are Heather Resource Management Ltd (HRML), an HR & Employment Law consultancy based in Unit 13 Twigworth Court Business Centre, Gloucestershire, GL2 9PG. HRML provide professional HR, Employment Law, Training and Development services to our clients.
Established in 2001, the company fully understands its duties, obligations, responsibilities and liabilities in relation to the personal data that it processes itself and on behalf of its clients, in the course of providing them with services.
Personal data we collect about you
We may use the following types of personal data:
Your name, the business name, address, email address, your job title, our communications with you, details of our contract with you, financial transactions (invoices, business bank details), records of the work we have carried out for you where you become a client.
Where we get the personal data from
The information that HRML can gather is from a number of ways/sources and by way of example they can be:
• From information we you have provided us to allow a specific task(s) be carried out on your behalf which can be via the phone, written word or through documents that we are given by you to provide the advice you are seeking
• When you offer up your business card asking for promotional material or additional advice that you are seeking as part of our overall services
• From communications from you
• From referrals where we have been mutually introduced to each other
• From meetings as part of the HR & employment law service that we offer or provide which also includes recruitment and training where you have asked for more information.
• From the details you gave us to establish a contract with HRML including invoicing and payment details
• Our Web site is set up to gather information using cookies
• Cookies are small files which are placed on your computer's, mobile or other device when you visit a website. Cookies help this website to analyse traffic and visitors and help our site respond to you as an individual.
• We use traffic log cookies to identify which pages are being used on our site and analyse visitor behaviour through statistics. If you wish to restrict, block or delete cookies from a website you have visited you can use your browser to do this. Each browser is different so check the ‘Help’ menu of your browser to learn how to change your cookie preferences. If you do this do bear in mind that certain personalised features of the website cannot be provided to you.
What do we do with the information
We use the information to provide you with our 6 monthly Employment Law update and Connect plus other material relating to other services we offer such as training. We use post and email to communicate. We consider that it is in our business legitimate interest to use your personal data in this way.
Where you become a client of ours we use your data to carry out our contract with you. Appendix A of our contract with our clients sets out in detail on our duties as a Processor.
Disclosing or Sharing information
We will not share any data or information relating to you or your company except without the clear acknowledgement by you that you have given your agreement in writing to us. It may be the case that we need to engage an associate or external consultant to assist us to complete the task that you require from us and there will by necessity be a requirement to advise them of all relevant information they need to carry out the work: we will advise you in advance that we will need to share your data with them.
When we share personal information with these parties we require that they only use or disclose personal information in a manner consistent with this policy. We also ensure that any contract with these organisations contains necessary privacy and security provisions in line with data protection legislation. We will not provide your details to any other third parties without your specific consent.
We do not transfer personal data to countries outside of the European Economic area. In the case of information stored on servers in the USA we will ensure any partners work within the EU-US Privacy Shield Framework.
Keeping Data Safe & Secure
We seek to maintain physical, technical and procedural safeguards that are appropriate to the sensitivity of the personal information. These are designed to protect your personal information from loss and unauthorised access, copying, use, modification or disclosure.
How long we keep your personal data
There may be legal and statutory requirements which govern how long we should retain your personal data. Outside of these, we will keep your personal data for the purposes set out above until we become aware it is no longer valid or you ask us to delete it.
Access to information
You have the right to receive a copy of personal data we keep about you and to check we are lawfully processing it, by contacting us directly.
In certain circumstances you may also have the right to request:
• Correction of the data;
• Erasure - you have the right to ask us to stop processing your personal information where there is no good reason for us to continue processing it or where we are relying on a legitimate interest and there is something about your situation that makes you wish to object to us processing it;
• That we suspend processing the information;
• The transfer of your personal information to another party.
We may need to request specific information from you to confirm your identity, to ensure personal information is not disclosed to anyone who does not have the right to receive it.
We will not charge a fee to access your personal data but we may charge a reasonable fee if your request for access is clearly unfounded or excessive; or we may refuse to comply with the request in these circumstances.
You have the right to make a complaint to the Information Commissioner’s Office (ICO) at any time.
We reserve the right to change this privacy notice at any time and will keep it up to date. The latest version will always be on our website.
Questions or concerns