Privacy Notice – Complainants
At Cornish Lithium, we are committed to protecting and respecting your privacy and safeguarding any personal data that you give to us. We are transparent about the processing of your personal data and this notice sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.
We are a controller under the UK GDPR and the Data Protection Act 2018.
Cornish Lithium Plc.
Tremough Innovation Centre, Penryn, Cornwall, United Kingdom, TR10 9TA
Phone: 01326 640640
What kind of personal data does Cornish Lithium collect and process when you provide feedback?
When you give us feedback, we may need your name, phone number, email, address, the details of the feedback, the date and any subsequent communications in order to respond to you.
Your personal information is kept for six years from the time that the complaint is resolved to the satisfaction of both parties.
What is our legal basis to use your personal data?
Our legal basis at the start of the feedback process is consent, as you voluntarily contact us. We hold your data and any other correspondence under legitimate interest as we need to keep a record of all feedback on a complaint for six years after the satisfactory resolution of the issue. We may, however, retain information about the nature of the complaint and how it was resolved for longer.
How does Cornish Lithium share your data with third parties?
We share your personal data with third parties where required, such as
- Service providers (for example, in order to correct physical damage, and our IT support and software platforms)
- Insurers (in case of a claim or potential claim)
- Legal and other advisors (for example, professional or legal advice)
All service providers and other professionals listed above are required to continue to adequately safeguard your personal data.
What security procedures does Cornish Lithium use?
We have procedures in place to prevent unauthorised access to, and the misuse of, personal data.
We use appropriate business systems and procedures to protect and safeguard the personal data you give us. We also use security procedures and technical and physical restrictions for accessing and using the personal data on our servers. Only authorised personnel are permitted to access personal data in the course of their work.
Do we transfer data out of the UK?
We endeavour to hold most of your data in the UK but we do have some service providers who are based outside of the UK. While some are in the EU, several of these providers are based in countries that are adequate for data transfer; for countries that are not, we use the international data transfer agreement (IDTA) or the international data transfer addendum to the European Commission’s standard contractual clauses, both issued under Section 119A of the Data Protection Act 2018.
What are your rights regarding your personal data?
You have the right:
- To access your personal data and information about our processing of it. You also have the right to request a copy of your personal data (but we will need to remove information about other people).
- To rectify incorrect personal data that we are processing.
- To request that we erase your personal data if:
- we no longer need it;
- if we are processing your personal data by consent and you withdraw that consent;
- if we no longer have a legitimate ground to process your personal data; or
- we are processing your personal data unlawfully.
- To object to our processing if it is by legitimate interest.
- To restrict our processing if it is by legitimate interest.
- To request that your personal data be transferred from us to another company if we were processing your data under a contract or with your consent and the processing is carried out by automated means.
If you want to exercise any of these rights, please contact us at GDPR@cornishlithium.com.
If you have a concern about the way we are collecting or using your personal data, please raise your concern with us in the first instance. You may also contact the Information Commissioner’s Office at https://ico.org.uk/concerns/.