GDPR

General Data Protection Regulation

The GDPR will come into force in all EU states from the 25th May 2018.

The GDPR has two main goals:

• People to have more control over how their data is being used 
• To give businesses a more fair legal outlook when it comes to having their information shared.

How does the GDPR change what was previously in place?

The two main things are:

• Individuals will be provided with much more information regarding what is happening with their information, and whats rights they have. 
• Individuals are given much more control in regards to gaining a copy of the information held by companies.

Data Controllers & Data Processors

A Data Controller states what happens with personal data and how it is processed. The Data Controller at 21st Century Motors Limited is Mark Conway. 

A Data Processor is the person who processes the data. All of the team at 21st Century Motors Limited will be processing data in order to retain control of each individual order ensuring the customer experience remains as high quality as possible. 

Once the purpose has been fulfilled and the data is no longer required, is will be deleted.

How do we gain consent?

Within the terms of the quote requests and details submitted each client submits consent to receive correspondance. 

How to withdraw consent?

You can withdraw your consent at any time without reason. 21st Century Motors Limited will then delete all data help without question.

To request this simply email sales@21stcenturymotors.co.uk.

How long does consent remain valid?

Your consent will remain valid for seven (7) years. This is to lease contracts can take up to five (5) years to expire. The additional two (2) years is allocated as one year before and one year after the potential contract start date.

What is classed as Personal Data?

This could be one of the following:

• Economic 
• Cultural 
• Mental health

We do not hold any of this information.

What data is/may be held?

The following is data that can be held for various reasons relating to each individuals requirements:

• Requirements & Interests 
• Health 
• Location 
• Age 
• Gender 
• Spouse & Children 
• Contact details

Who do we share your data with?

21st Century Motors Limited will never sell your information.

We share your data solely for the undertaking of credit approvals and vehicle ordering.

Certain data will be stored to:

• Make contact 
• Prevent fraud 
• Solve problems

We share your information with:

•  Finance companies that will be the funder of vehicles you choose 
• Motor dealers that will provide the vehicle / funding you have chosen 

Soft opt in

This is a term used which allows us to communicate with individuals that have shown interest, even if they have not opted in after the 25th May 2018.

This could be an individual who has shown interest in our product or services and we are contacting them to discuss providing it is solely about the products and services we can offer.

How does 21st Century Motors Limited ensure they comply with the GDPR rules?

Training - all staff will undergo training to learn about GDPR

Password protection - all customer data is sent with a password protecting the information when possible. 

CRM systems - our customer relationship management systems are secure with no export facility available to any memebers of staff, other than the Data Controller.

Paperless - we do not use paper at all. All of our documents are online and secure. Should customers post documents to us we scan, process, and shred.

Data Breach

We take security and customer protection very serious. Should a breach occur 21st Century Motors Limited will asses the situation, report it to the necessary authorities and also communicate the breach to any individuals affected.

21st Century Motors Limited will report this within 48 hours and contact individuals affected within 72 hours.

Complain 

Should you feel it necessary to file a complaint please do this by visiting out complaints page.