Policy prepared by:
Approved by board / management on:
Gary Kitchin on 22/05/2018
Policy became operational on:
Next review date:
What and who does this Policy apply to?
Information we collect
When You Visit Our Website
You are free to explore our website without providing any information about yourself. When you visit our website, fill one of our forms or subscribe to one of our Services, we request that you provide Personal Information about yourself, and we collect Navigational Information.
This refers to any information that you voluntarily submit to us and that identifies you personally, including contact information, such as your name, e-mail address, company name, address, phone number, and other information about yourself or your business. Personal Information can also include information about any transactions, both free and paid, that you enter into on our website, as well as information about you that is available on the Internet, such as from Facebook, LinkedIn, Twitter and Google, or publicly available information that we acquire from service providers.
This refers to information about your computer and your visits to our website, such as your IP address, geographical location, browser type, referral source, the length of the visit and pages viewed. Please see the "Navigation Information" section below.
We may collect and process company details, personal data and payment information provided by you for the purpose of providing a service(s) or product(s) and managing your account. This may include bank account details, credit cards numbers and billing information. Except for this, we do not collect Sensitive Information from you.
Our lawful basis for processing your data
It’s in HMK Automation Group Ltd’s legitimate business interest to keep its customers, members and contacts informed of our latest content, products and services and to manage and administer their memberships, contracts and purchases.
We process customer and client data and use direct marketing as part of this legitimate interest. It’s necessary for us to use a variety of direct marketing channels and messages to ensure our contacts are kept informed, and wherever possible we make sure the messages we send are targeted and relevant. Any direct marketing we undertake complies with e-privacy rules on consent.
We will keep your data safely and securely for as long as necessary or according to your instructions, and we review the data we hold at least once every two years. If you’d like more information about how we store your data
(GDPP2018), please contact us directly.
How we use information we collect
Use of Personal Information
Use of Navigational Information
We use Navigational Information to operate and improve our website. We may also use Navigational Information alone or in combination with Personal Information to provide you with personalised information about our website.
Customer Testimonials and Comments
We post customer testimonials and comments on our website, which may contain Personal Information. We obtain each customer's consent via email prior to posting the customer's name and testimonial.
Use of Credit Card Information
If you give us credit card information, we use it solely to check your financial qualifications and collect payment from you. We use a third-party service provider to manage credit card processing. This service provider is not permitted to store, retain, or use the information you provide except for the sole purpose of credit card processing on our behalf.
Security of your Personal Information
We use a variety of security technologies and procedures to help protect your Personal Information from unauthorised access, use or disclosure. We secure the Personal Information you provide on computer servers in a controlled, secure environment, protected from unauthorised access, use or disclosure. When sensitive Personal Information (such as a credit card number and/or geo-location data) is collected on our website and/or transmitted to other websites, it is protected through the use of encryption, such as the Secure Socket Layer (SSL) protocol.
If you have any questions about the security of your Personal Information, you can request to see our (GDDP2018) Document.
Social Media Features
Retention of Personal Information
We retain Personal Information that you provide us as long as we consider it potentially useful in contacting you about the Subscription Service or our other services, or as needed to comply with our legal obligations, resolve disputes and enforce our agreements, and then we securely delete the information. We will delete this information from the servers at an earlier date if you so request, as described in "Opting Out and Unsubscribing" below. If you provide information to our customers as part of their use of the Subscription Service, our customers decide how long to retain the personal information they collect from you. If a customer terminates its use of the Subscription Service, then we will provide the customer with access to all information stored for the customer by the Subscription Service, including any Personal Information provided by you, for export by the customer according to our agreement with our customer. After termination, we may, unless legally prohibited, delete all customer information, including your Personal Information, from the Subscription Service.
International Transfer of Information
To facilitate our global operations, we may transfer and access Personal Information from around the world, including outside of the EU. This is only performed given the territory or country ensures an adequate level of protection for the rights and freedoms of the data subjects in relation to processing of personal data.
If we (or our assets) are acquired by another company, whether by merger, acquisition, bankruptcy or otherwise, that company would receive all information gathered by HMK Automation Group Ltd. In this event, you will be notified via email and/or a prominent notice on our website of any change in ownership, uses of your Personal Information, and choices you may have regarding your Personal Information.
We reserve the right to use or disclose your Personal Information if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, comply with a law, court order, or legal process.
Third Party Data
HMK Automation Group Ltd may receive data about organisations, industries, website visitors, marketing campaigns and other matters related to our business from our partners, affiliates or others, that we use to make our own information better or more useful. This data may be combined with other information we collect and might include aggregate level data, such as which IP addresses correspond to business addresses. Or it might be more specific: for example, how well an online marketing or email campaign performed.
Our expectations of our content partners
Any personal data we share with our content partners is shared only the basis that the data will be used by the partner under a lawful basis of legitimate interest and according to the requirements of the GDPR. We specify this in our contracts with all our content partners.
Data processing partners
HMK Automation Group Ltd may provide your personal information to a subsidiary of the HMK Automation Group Ltd, any affiliated companies or other trusted businesses or persons, acting under a confidentiality agreement, for processing personal information on behalf of HMK Automation Group Ltd. These parties are required to process such information based on instructions from HMK Automation Group Ltd and in accordance with this Policy. They do not have any independent right to share this information.
HMK Automation Group Ltd. may transfer Your Data if HMK Automation Group Ltd is acquired by or merged with another company. HMK Automation Group Ltd will provide notice before this occurs and will post a new Policy if necessary
HMK Automation Group Ltd may share your personal information with a credit checking company or with a credit card processing company to bill users for products & services. These third parties do not retain, share, or store any personally identifiable information except to provide these services and are bound by strict confidentiality agreements which limit their use of such information.
Your rights over the personal data we hold
You can reasonably request access to the personal data we hold on you, at any time, and we will provide that information free of charge within one month of your request at the latest.
You can request inaccurate or incomplete personal data held on you to be rectified or completed or for your personal data to be suppressed or erased, and we will respond within one month of your request at the latest. We will supply any data you request in a CSV file.
Your right to object
You have the right to opt out of our direct marketing at any point, and we will deal with your request right away. You can unsubscribe from our emails automatically by submitting this unsubscribe form. Alternatively, you can amend your email preferences via our preference centre. To opt out of our direct mail or telephone marketing please call us on +44 (0)1260 279 411 or email
How we store data we collect
Information can be held in any of the following areas:
- Locked filing cabinets at our Congleton offices;
- Office desks whilst being worked on;
- Secure servers with offsite backup;
- Our ERP and CRM systems
- Correspondence with customers is also held on our email system;
- Bank details are also held in our Bankers secure online banking system. This data is only accessible by a restricted number of key staff and is protected via bank pin numbers and access card readers;
- Note that if we receive notification of a change to your bank details we will telephone our customer contact for confirmation as a security measure before any amends are actioned;
- Credit and debit card details are held on our Barclaycard online processing system. This system can only be accessed by members of the order processing team;
- Archived information (information over 2 years old) is archived and held in our office in Congleton.
- Who has access to the data we collect
- HMK staff who have access to our server, emails and hard copy files held in locked cabinets;
- HMK Staff who have access to our Dynamics NAV ERP system. Each member of staff has system permissions set in accordance with their role and duties;
- Bank details are also held in our Bankers secure online banking system in payment templates. This data is only accessible by a restricted number of key staff and is protected via bank pin numbers and access card readers;
- Credit and debit card details and only be accessed by members of the order processing team/finance team. Details are also held on our secure online Barclaycard system.
For more information on how we manage and protect data internally, you can request to see our General Data Protection Policy (GDDP2018) by calling 01260 279 411 or emailing
This Privacy Notice may be changed by the Data Office of HMK Automation Group LTD any time.