Tried and Supplied Limited (“we“, “our” and “us”) is committed to protecting and respecting your privacy. We comply with all data protection legislation, including the General Data Protection Regulation (EU 2016/679) (GDPR) and the Data Protection Act 2018.
Any capitalized terms used throughout this Policy have the same meaning as defined in our Terms of Service.
Our Website and Platform may, from time to time, contain links to and from the websites of third parties. If you follow a link to any of these websites, please note that the operators of these websites have their own privacy policies applying to the processing of your personal data and that we do not accept any responsibility or liability for their policies.
If you visit and use our Website or Platform certain personal information from you may be collected and processed by us. As the legal entity owning and operating the Website and the Platform we are responsible for, and control the processing of, your personal data. Therefore, we are your data controller. Our details are:
Tried and Supplied Limited
24b Smith Terrace
London, SW3 4DL
Information we collect from you
We do not collect or require you to provide us with any more information than necessary to enable us to provide you with our Services. We are not aiming to collect as much information from you as possible and we do not sell your information to any third parties.
However, we may collect a bit of information about you when you access our Website, sign up for an account with us, use our Platform or contact us. This includes information which may be considered personal information, which means that such information identifies or is able to identify a person. Sometimes, this is done directly, for example when you enter personal details of one of your employees in your account, and sometimes this is done indirectly, for example when an employee browses our Platform and a cookie collects his or her IP address (please refer to the section on Cookies below).
Information we collect, which may qualify as personal information if it relates to an individual, includes:
- business name;
- business registered office address;
- primary contact name, e-mail address and phone number;
- employee’s name, e-mail address and job title;
- username and log-in details;
- any other personal information provided to us via e-mail.
This personal information is used by us to:
- create and manage your account with us;
- verify your identity;
- provide you with our Services;
- notify you of any changes made to our Website, Platform, Terms or this Policy that may materially affect you;
- answer and solve your queries;
- improve the Services we offer.
Our Website is not intended for use by children and we do not knowingly collect or use personal information relating to children.
The legal bases we rely on when processing your personal information
We can only process your personal information when we have a legal basis to do so. This legal basis depends on the type of personal information we process and for what purpose.
The relevant legal bases for us are:
- consent: you give us your clear consent to process your personal information for a certain specific purpose;
- performance of a contract: where we need your personal information to perform our obligations under a contract we have with you;
- legal obligations: if we need your personal information in order for us to comply with our legal obligations under applicable law;
- legitimate interests: where we need your personal information for our legitimate interests.
We rely on the performance of our obligations under our contract with you (our Terms of Service) when we collect and process names, addresses, e-mail addresses, telephone numbers, job titles and log-in information. Without this information we cannot provide you with the Services you expect us to provide when you sign up for an account and use our Platform. For example, we need a supplier’s business’ e-mail address and telephone number to communicate with you about your account and in order to enable buyers to contact a supplier directly in relation to a transaction. If your account is cancelled, we will delete this information from our Platform so that it is no longer available to our Users, unless we are obliged by applicable law to retain such information longer. We will, however, retain your generic business name and the generic business e-mail address on our internal database, so that we are aware that we should not contact you in the future for marketing and sales purposes.
We rely on your explicit consent when we send you any of our marketing materials, such as a newsletter or suggestions for suppliers that may be of interest to you. Without such consent, we will not use your personal information for any marketing purposes. Once you have given your consent, you can at any time withdraw your consent by contacting us, by clicking on the unsubscribe link in e-mails sent out to you or by adjusting the settings in your dashboard.
A cookie is a small text file which is placed onto your device (e.g. computer, smartphone or other electronic device) when you use our Website. We use some cookies on our Website. These help us recognise you and your device and analyse the activity on our Website.
We use Google Analytics cookies. These cookies are used to collect information about how visitors use our Website. We use the information to compile reports and to help us improve the Website. The cookies collect information in an anonymous form, including the number of visitors to the Website, where visitors have come to the Website from and the pages they visited.
Who we share your personal information with
Please note that we do not sell your personal information to any third party.
We do, however, technically ‘share’ your information with third-party service providers in order to enable us to manage our customer data effectively and to send out newsletters. We use recognised software providers, such as Hubspot and Mailchimp, for these purposes.
We will share personal information with law enforcement or other authorities if required by applicable law.
We will not share your personal information with any other third party.
How we store your personal information
We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or otherwise accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
Once we have received your information, we and our third-party service providers will use strict procedures and security features to prevent unauthorised access.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
We only retain your personal information for as long as we need it to fulfil the purposes for which we have initially collected it. If your personal information is not required anymore for contractual or statutory obligations, we normally delete it. We do retain your generic business name and generic business e-mail address in order to remember not to contact you for marketing and sales purposes in the future. However, we may retain certain data for longer to comply with the retention obligations of applicable laws, for example laws and regulations on taxes and the prevention of fraud and anti-money laundering.
Under data protection laws, you have a number of rights which you can exercise free of charge. The rights relevant to you are:
- Access to your personal information and to certain other supplementary information that this Policy is already designed to address.
- Require us to correct any mistakes in your personal information which we hold.
- Require the erasure of personal information concerning you in certain situations.
- Receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations.
- Object at any time to processing of personal information concerning you for direct marketing.
- Object in certain other situations to our continued processing of your personal information.
- Otherwise restrict our processing of your personal information in certain circumstances.
If you want to exercise any of your rights, please contact us by e-mail: email@example.com. Please let us know what your request relates to and provide us with enough information to identify you. We may require you to provide us with proof of identity (such as a passport or driving license) and address in order to prevent misuse.
Make a complaint
If you encounter any problems in relation to the use of your personal information, please contact us so we can try to resolve your query or concern. You also have the right to lodge a complaint with the supervisory authority in the EU member state where you work, normally live or where any alleged data infringement of data protection has occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/concerns/ or telephone: 0303 123 1113.
Changes to this Policy
From time to time, we may make changes to this Policy. The most recent version of our Policy can always be found here.
If you have an account with us and the changes materially affect you, we will inform you by e-mail 30 days prior to the changes coming into effect.
How to contact us
Questions, comments and requests regarding this Policy are welcomed and should be addressed via e-mail to firstname.lastname@example.org or in writing to the address set out under the section Data Controller.