1. RED Driving School is committed to protecting your privacy and maintaining the security of any personal data received from you. We strictly adhere to the requirements of the data protection legislation in the UK. The purpose of this statement is to explain to you what personal data we collect and how we may use it.
2. When you contact us to make an enquiry, we will ask you for your name, address, postcode, phone number(s) and email address.
3. We will retain your personal data for a length of time dependant on the nature of our relationship with you, as follows:
– RED will hold the personal data of driving lesson enquirers and those who register on our website for no more than 30 days unless DVSA practical test centres are closed in England, Scotland or Wales in which case RED will retain data for no more than 3 months after the test centres re-open.
– For enquiries regarding training to become a Driving Instructor and for Becoming a Driving Instructor with RED Driving School we will hold your personal data for 3 years.
– Once you become a customer of RDS Driving Services Ltd by making a purchase, booking a lesson, purchasing a training course or signing up to a franchise, we will retain your personal data for as long as you are an active customer plus 6 complete financial years of the company from your last recorded activity, in line with Financial and Accounting regulations.
4. We will only ever share personal data that we collect from you with the following third parties and only for the purpose(s) described:
– First Data / Cardnet – Merchant Services (payment card processing)
– RealEx – payment card processing
– Verifone – payment card processing
– Esendex – to send booking notification SMS text messaging to your Instructor
– Forfront – for RED Driving School direct marketing emails, provided you have granted consent for us to do so
– PrintSwift – for delivery of cash voucher and gift voucher print and mailing services via post and email
– Adobe Sign – electronic contract and document processing
– FogCreek – Customer Relationship management
– Feefo, TrustPilot and e-Sales Hub – for feedback on RED’s customer service and review ratings
– ATOM42-for marketing analysis
– DJS and Bridge Consulting-to undertake independent research into your experiences with RED.
5. We may share your personal data internally between RDS Driving Services Ltd group companies in order to provide special offers and relevant products and services.
6. We follow strict security procedures in the storage and disclosure of personal data which you have given us, to prevent unauthorised access in accordance with the UK data protection legislation. We do not collect sensitive data about you except when you specifically knowingly provide it. In order to maintain the accuracy of our database, you can check, update or remove your personal details by emailing email@example.com.
7. We use a technology called “cookies” as part of a normal business procedure to track patterns of behaviour of visitors to our site. A cookie is an element of data that our website sends to your browser which is then stored on your system. You can set your browser to prevent this happening. Any information collected in this way can be used to identify you unless you change your browser settings.
8. We do not transfer any data to any organisation outside the EEA unless they operate to the standards required under the GDPR regulations.
Your use of our Sites, including any orders you place, is governed by our Terms and Conditions of Sale. Please take the time to read these, as they include important terms which apply to you.
WHO ARE WE?
The data controller of our Sites is RED DRM Limited (“we”, “us” or “our”) of (Unit 3a, Western Paddock, Donington Park, Castle Donington, Derbyshire, DE74 2BN). If you have any questions about how we treat your personal data, please contact the Data Protection Officer at RED DRM Head Office, Unit 3a, Western Paddock, Donington Park, Castle Donington, Derbyshire, DE74 2RP or via email to firstname.lastname@example.org.
What information do we collect and why do we collect it?
Using your personal information
Who do we share this information with?
Where do we store your personal data?
How to get copies of or amend the information we have collected
How to Contact Us
WHAT INFORMATION DO WE COLLECT AND WHY DO WE COLLECT IT?
When you visit our Sites, we may collect:
Information such as your computer’s IP address, browser type and version and anonymous information collected from cookies when you are browsing our Sites. We collect this information to help us understand how to improve our services and our Sites and to ensure that the content on our Sites is presented to you in an effective manner. We have a legitimate business interest for this processing: to ensure that our Site is operating effectively and to provide you with a great service.
Personal information such as your name, address, phone number, date of birth, driving licence number and email address as provided by you when you register to or place an order with us and enter your payment card details. We collect this information for the following reasons:
• To process your order. We engage third party processors to process the payment of your order. We collect this information to perform a contract with you and, if you fail to give us the information that we request, then you may not be able to place an order. If you consent to them doing so, the third party processors (PayPal, Global Payments) may store your payment card details to speed up your transaction time.
• For product development (for example, call backs for feedback on new products), for statistical, market research, testing and survey purposes, to notify you about changes to our Sites or our services. We have a legitimate business interest to collect this information: to continue to improve the services we provide to you;
• To ensure you receive marketing and offers that are of most interest and relevance to you.
• Information that you provide to us when requesting a Quick Quote (including your name, email address, company name (if provided) and contact phone number)
• Information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters (including your name and email address)
USING YOUR PERSONAL INFORMATION
What have I consented to?
We will not send direct marketing messages to you unless you have opted-in to our marketing. If you have opted-in, this means that we may contact you via email or phone.
• with offers about our products;
• to deliver relevant, tailored advertising to you with information about products or services we feel may interest you.
• Administer our website and business
• Personalise our website for you
• Enable your use of the services available on our website
• Send you information or prices requested
• Send you non-marketing commercial communications
• Send you email notifications that you have specifically requested
• Send you our email newsletter, if you have requested it (you can inform us at any time if you no longer require the newsletter)
Can I withdraw consent?
You are always free to opt-in to our marketing and you are always free to opt-out at anytime; this will never have an impact on our commitment to provide you with great service and a quality product. To withdraw consent to marketing, please click here. We will stop sending you marketing messages as soon as possible but, in any event, will do so no later than 30 days from your request to withdraw consent.
How long do you keep my consent?
We will remove your details from our systems for marketing purposes once your account is closed and destroy any associated papers once our legal/accounting obligation to keep them has expired.
This Section sets out our data retention policies and procedure, which are designed to
help ensure that we comply with our legal obligations in relation to the retention and
deletion of personal information. Personal information that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
Notwithstanding the other provisions of this Section, we will retain documents (including electronic documents) containing personal data; to the extent that we are required to do so by law; if we believe that the documents may be relevant to any ongoing or prospective legal proceedings; and
in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk).
Updating your consent
From time to time we may ask you to update your consent to make sure that you are still happy to receive marketing communications. If you are presented with an opt-in box and choose not to receive marketing communication from us on some or all media, we will update our records accordingly.
WHO DO WE SHARE YOUR INFORMATION WITH?
We may share your personal information with a purchaser or a potential purchaser of our business. We have a legitimate business interest to do this: to assist with the sale or potential sale of our business.
We may also share your information with 3rd party service providers in order to facilitate your order or service.
We may disclose your personal information to any of our employees, officers, insurers,
professional advisers, agents, suppliers or subcontractors insofar as reasonably necessary
for the purposes set out in this policy or the services we provide.
We may disclose your personal information to any member of our group of companies
(this means our subsidiaries, our ultimate holding company and all its subsidiaries) insofar as
reasonably necessary for the purposes set out in this policy.
In some circumstances, we may have to disclose your personal information by law, because a court or the police or other legal or regulatory enforcement agency has asked us for it.
We require all third parties that we work with to treat your personal information as confidential and to fully comply with all applicable UK and Ireland data protection and consumer legislation.
WHERE WE STORE YOUR PERSONAL DATA
Information that we collect will not be transferred outside the European Economic Area
without ensuring that the personal information is protected to an equivalent standard.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of any data transmitted to our Sites and any transmission is at your own risk.
Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. All information you provide to us is stored on our secure servers. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and corporate policies to safeguard and secure the information we receive.
HOW TO GET COPIES OF OR AMEND THE INFORMATION WE HAVE COLLECTED
You may request details of personal information which we hold about you under the Data Protection Act 1998. If you would like a copy of the information held on you, please contact us at email@example.com or write to us at RED DRM , Unit 3a, Western Paddock, Donington Park, Castle Donington, Derbyshire, DE74 2RP for the attention of the Data Protection Officer.
If you think any information we have about you is incorrect or incomplete, please write to us or email us and we will correct or update any information as soon as possible.
We may link to other websites which are not within our control. Once you have left our Sites, we cannot be responsible for the protection and privacy of any information which you provide. You should exercise caution and look at the privacy statement applicable to the website in question.
You are required to create a password when you register an account with us. Creating a secure password is one of the best ways of keeping your information safe and you can change this at any time by logging into your account.
You should never write your passwords down anywhere, or share them with anyone, including close family members.
Although it may be tempting to use the same password if you have more than one online account on different websites, it is far more secure to have a different and unique password for each online account you have. This reduces the chances of all your accounts being accessed if one of your passwords is compromised.
You should also regularly change your password to improve the security of your online account.
Similarly, if you ever have any suspicions that someone may have accessed your account, you should immediately change your password.
You can re-set your password on our websites any time by logging into your account and selecting the ‘change my password’ option.
If you’ve forgotten your password, enter your email address on the ‘forgotten your password’ page and we’ll send you an email. Simply follow the instructions in the email to change your password.
HOW TO CONTACT US