We are committed to our users’ right to privacy. We promise to share as transparently as possible all aspects of how the 299 Lighting Ltd. website works regarding privacy, terms, and personal data, and we endeavour to ensure your protection online.
The following is a collection of information and resources to help answer any questions you have about your experience with 299 Lighting. We’re grateful for your interest and proud to have you as visitors to our website!
The EU’s General Data Protection Regulations (GDPR) takes effect May 25, and we are fully behind the spirit of these regulations. We aspire to embrace privacy by design and, whenever possible, to not collect and store personally-identifiable information.
Overall, we aim for privacy by default: if data collection is not integral to the way our product works, then we won’t collect it. This approach has felt very much in line with the spirit of GDPR, and we’re fortunate that a lot of these data collection practices have been in place at 299 Lighting for some time.
You may request your data to be exported and sent to you at any time, we will promptly honour any requests for deletion and to be forgotten (Data will be removed within 72 hours of the request).
Below is our progress in regard to GDPR compliance:
We are auditing all areas of 299 Lighting to determine what personal data we collect and for what purpose. In a case where collecting personal data is not essential we are removing permanently removing this information.
We are working to ensure that our policy is easy to understand, and that it indicates any instances of personal data collection.
Status: Approaching Completion
All users have the right to request that we delete any of their personal data. Persons who wish to inquire about the right to be forgotten can reach out to us at any time (we will always come back to you within 72 hours of your request).
Access / Portability
A person can request access to a copy of the personal data that we have collected (we will always come back to you within 72 hours of your request). Users who wish to request portability can reach out to us at any time. Zoho (our CRM provider) can be contacted to ensure all data is sent across (in line with their data handling policy).
At 299, if a user asks to change their information, we can do so within our CRM. If a user has a modification to make, they can reach out to us at email@example.com (we will always come back to you within 72 hours of your request).
Data Protection Agreement
We are in the process of creating a legal agreement that users and external parties can receive from us. This promises the protection all personally identifiable information that we collect and store.
Our sub-processors (any third party that we share personally identifiable info with, although they do not use the information for their benefit).
Here is a list of sub-processors:
We have registered Barnaby Giles as our data handler. Barnaby will be in charge of any queries related to data, you may connect with him on LinkedIn or email him at firstname.lastname@example.org.
In the event of a breach of any users' data, we will report the breach within 72 hours but always aim to do so at the earliest convenience. Breaches will be reported to the ICO and we will follow their recommendations for remedying the situation.
Duration Data Held
We have decided that data will be held for the following lengths of time. 2 years for those that we have deemed to have legitimate interest (based upon their interactions with 299) and 3 years for customers and those that have opted-in.