Updated 29th April 2019
Big Hundred Limited is committed to protecting and respecting your privacy.
It applies to personal information we collect through our email, website and in person and personal information we may have access to via our clients where we may act as both data controller and/or data processor on their behalf for the purpose of the services we are contracted to provide.
By sharing personal information with us we take responsibility for the information we collect, and we aim to be transparent about how we handle it, and to give control over it.
A reminder of your rights...
The EU General Data Protection Regulation (GDPR) effective from 25th May 2018 gives all EU citizens more rights and protections for their personal data. More information is available here.
These regulations include
The right to be informed: Companies must publish a privacy notice, in addition to explaining transparently how they use this personal data.
The right of access: Individuals will have the right to demand details of any of their data that a company may hold. This information must be provided within one month of request at no charge to the individual.
The right to rectification: If a person’s data is incorrect or incomplete, he or she has the right to have it corrected. If the company that holds the information has passed any of that information to third parties. The company must inform the third party of the correction and inform the person which third parties have their personal data.
The right to be forgotten: A person may request the removal of his or her personal data in specific circumstances.
The right to restrict processing: Under certain circumstances, an individual can block the processing of his or her personal data.
The right to data portability: A person can access their data for their own use anywhere they prefer.
The right to object: A person can object to the use of their personal data for most purposes.
The right not to be subject to automated decision-making, including profiling.
This statement applies to the following:
Personal information we collect through our website.
Personal information we collect about you in the course of doing business with you, such as when you engage with us as:
consultant or other third party in relation to the provision of our services and the operation of our business generally.
Personal information we have access to via our clients as part of our contracted business services.
What personal information do we collect?
Information you provide to us through our website or by phone or email.
This is information about you that you give us by filling in forms on (our site) or by calling and/or emailing us. The information you give us may include your name, address, email address and phone number, details of your business activities.
Information clients and potential clients provide to us
Other information we collect in the course of operating our business
We also collect information from our suppliers, service providers, agents, consultants, business partners, professional advisors and other third parties for the purpose of managing and operating our business.
Information we receive from other sources.
This is information we receive about you from third parties.
We are working closely with third parties (including, for example, business partners, advertising networks, analytics providers, search information providers, credit reference agencies).
Cookies and other technologies
“Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. Some cookies are required for our sites to work, others you can choose to accept or not.
Under the new EU General Data Protection Regulations (GDPR) effective 25th May 2018, the law requires your consent to the use of ‘cookies’ when you visit our site.
As a result our site has a clear cookie consent banner. You can choose to opt into accepting all the cookies our platforms use, or you can choose to accept only those that are necessary for the site to work properly.
We store all consents using a third-party app. They track your consent and ensure that the option to consent is renewed at sensible intervals. You are only identifiable only by IP address and you can change your mind and update your consent preferences at any time – simply email us at firstname.lastname@example.org
We can provide a report of all cookies on our site which is updated monthly – please email us for a copy at email@example.com
Our website is hosted by Wix and uses two types of cookies:
Session (Transient) cookies: these cookies are erased when you close your browser, and do not collect information from your computer. They typically store information in the form of a session identification that does not personally identify the user.
Persistent (Permanent/Stored) cookies:these cookies are stored on your hard drive until they expire (i.e. based on a set expiration date) or until you delete them. These cookies are used to collect identifying information about the user, such as Web surfing behaviour or user preferences for a specific site.
More information on Wix cookies can be found HERE
For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
How do we use personal information?
We use personal information in the following ways:
to carry out our obligations arising from any contracts/agreements between Big Hundred and our clients and the and the services requested from us;
to provide you with information about events and services we think may be of interest to you;
to process and complete business transactions and send related information, including transaction confirmation and invoices;
to notify you about changes to our service;
to ensure that content from our site is presented in the most effective manner for you and for your computer.
Collection and use of non-personal information
We use Google Analytics to capture unidentifiable visitor traffic to our website. All data is anonymous to us and Google Analytics monitors general visitor activity so that we can understand how our website is being used and where our traffic is coming from around the world.
Within Google Analytics we have disabled data collection for advertising purposes such as remarketing and advertising reporting. Data is deleted after 50 months.
More information on Google Analytics data practices and security is available HERE
What personal information do we share with third-parties?
We do not sell personal information to any third parties; however we may share your personal information with third parties as follows:
Selected other parties including: business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you; If you would like more detailed information about our third-parties please email us at firstname.lastname@example.org
Analytics and search engine providers that assist us in the improvement and optimisation of our site;
Credit reference agencies for the purpose of assessing your credit score where this is a condition of us entering into a contract with you.
We will disclose your personal information to third parties:
In the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets.
Automated decision making
We do not use automated decision making including profiling.
How long do we keep personal information?
The actual period for which we store personal information will vary depending on the type of personal information and how it is used.
Any personal data we have as a result of performing our contractual obligations for our clients will be deleted when our contractual obligations end.
Access and control of personal information
You have the right to access, update and amend personal information that we hold about you at any time.
In certain circumstances, you can also:
Object to our use of your personal information for certain purposes;
Ask us to limit or restrict our use of your personal information;
Ask us to correct, remove or delete personal information about you; or
Ask us to provide your personal information to a third-party provider of services.
Please note that those rights do not always apply and there are certain exceptions to them and we will need to confirm your identity before acting on certain requests.
If the law in your country allows us to impose a fee for giving you access to your personal information, or to exercise any of your other rights in relation to your personal information, we will let you know.
If you would like to exercise any of your rights in relation to your personal information, please email
Data transfers, storage and handling of personal information
We, and the third parties that we share personal information with, then host, store and otherwise handle that information.
We have taken steps to check that all third-party service providers we use are adopting GDPR compliant standards to manage all personal data.
Please be aware that the information which you provide to us may be transferred to countries outside the European Union (“EU”). As an example our website platform is hosted in data centres in both the United States and Europe. From time to time, they may transfer hosting from one location to another. Regardless this platform complies with the EU-US Privacy Shield Framework and the Swiss-US privacy shield framework regarding the collection, use, and retention of personal information transferred from the European Union to the United States.
In addition, we take steps internally to protect personal data, for example, only authorised personnel have access to data and only for the purpose of carrying out their roles. We enable two-step authentication across all accounts, data lives in a minimum number of locations, data downloading is kept to a minimum, any printed materials containing personal data (eg. accounts related reports) are stored in locked cupboards, we use a document shredder etc.
We will report any unlawful data breach of our website’s database or the database(s) of any of our third-party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
Third Party Sites
Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Communication, engagement and actions taken through external social media platforms are subject to the terms and conditions and the privacy policies held with each social media platform respectively.
We will never ask for personal or sensitive information through social media platforms and encourage users wishing to share personal details to contact us directly.
Our sites may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using these buttons that they do so at their own discretion aware that the social media platform may track and save your request.
If we have your e-mail address, we may also e-mail you with information on those changes if we feel they are significantly important in which case we will also ask you to confirm that you are happy with those changes.
How to contact us
If you have any questions, comments or concerns, or would like to make a complaint about how we use the personal information we hold about you, please email us at email@example.com