Website Privacy Policy

We have provided our privacy policy which shows how we store, collect, use and share personal information. The policy details the legal rights you have to the personal information collected, used and stored by us.

Data Protection

Personal information collected and stored by us is in accordance with new UK Legislation including the General Data Protection Regulations and Data Protection Act 2018. We detail in sub headings below how we use, store and share such information:

Personal information:

Personal information reveals religion, political beliefs, genetic data, health, sexual orientation and information relating to an identified or identifiable individual is “personal information”.

Who we are

We are Millennium Pest Control Limited and we store collect and use personal information subject to the General Data Protection Regulations as the controller of that personal information.

Information we collect

• Your Contact information, this includes your name, address, email address, home phone number and mobile phone number. This may be personal details or company details.
• Personal details that enables us to check your identity.
• Address billing details and information for transactions and credit /debit card payments.
• Checks carried out to prove security and identity
• Data for your Location

Our business requires us to collect Personal information to provide products and services to you. Without this information our products or services may be delayed or may fail to be carried out.

How do we Collect Personal Information

We collect personal information directly from you in person. This may be by a phone call or email when you make a booking or buy a product or likewise through our website booking system, Information is also collected by our company when we process service reports through our website app cloud system when generating reports.

Other information may also be collected from a third party source or a third party you have gave consent, including cookies from our website, IT systems, network systems and email systems.

This is how we will use your personal information

We can only use your personal information under data protection law, if we have a lawful reason do so such as:

• Our Regulatory and legal obligations
• To perform the contract by requesting information between us and you before entering the contract.
• If you have gave us consent.
• If there is a legitimate interest for business or commercial reason that does not override your own rights.

The legal reasons for using your personal information are:

• Provide you with our services or products.
• Prevent fraud and security breach
• Checks to identify and verify our customers
• Comply with our processing of legal obligations governed by the business
• To provide information for audits or investigations by regulatory bodies.
• Providing lawful business policies are adhered to regarding internet and security
• Business Operations such as staff training and quality control.
• Ensuring confidentiality of sensitive information
• Providing stats that help the operation of the business
• To prevent access to unauthorised users and Preventing access to modification of our systems
• Customer records being reviewed and updated
• Returns
• Providing safe working procedures, employee administration or assessments
• The Marketing of our Products or our professional services;

Use of special category personal information

The above list does not apply to special category information. Unless we receive your consent for personal category information your data will not be processed.

Communications for Marketing and Promotional Purposes

Information may be sent to you by email regarding our services and products, where consent is required we will ask your permission in advance.

As part of your legal right you can opt out of receiving our promotional or marketing emails.

We may need to update you with regulation or legal changes to our services or products and request your consent if such communications are required.

Personal information: How we may share:

We will not share your personal information with any other third party apart from third parties that we use to help run our business such as payment service providers, Local Authorities, Our insurers, bank and IT support company, IT cloud system and scheduling software.

We take measures to ensure all our service providers have adequate control measures in place to protect your information. Our service providers will only use your personal information between us and you. We only allow our service providers to handle your personal information if we are satisfied they take appropriate measures to protect your personal information. We in some cases need to comply with our legal obligations and will need to disclose information with regulatory bodies and legal agencies.

Where do we store your personal information

Information may be kept at our offices, IT cloud systems and scheduling software.

How long we retain personal information

Whilst we are providing products and services to you we retain your personal information.

We will keep personal information to deal with complaints or claims made you for as long as required to help us assist you and to keep records required by law.

Personal information will not be withheld for longer than necessary as set out in this policy.

Personal information will not be transferred outside the European Economic Area (EEA) unless checks have taken place to make sure Third Part Processors outside of the EEA are GDPR Compliant like google cloud which is where Setmore database is stored and google cloud complies with the EU-U.S. and Swiss-U.S. Privacy Shield frameworks.

https://cloud.google.com/security/compliance/privacy-shield/

Your data protection legal rights

• Right of access: entitled to a copy of the personal information we hold.
• Correct any mistakes made by us in your personal information;
• In certain circumstances ask us to delete the personal information we hold.
• In certain circumstance restrict us processing personal information.
• Right to receive the personal information you provided to us in an easy readable format or asking us to communicate this information to a third party in certain circumstances.
• Reserve the right to prevent us using your personal data for marketing purposes

Please feel free if you would like to exercise your right to access data stored:

How we keep personal information secure

We have put security measures in place to help prevent your personal information being lost, used or given access to without legal consent. Only staff that have genuine business reason may see or access your personal information. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. We also have procedures to deal with a suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

We store site reports on our onsite file sharing system (Nextcloud) which is protected with two factor-authentication, SSL technology and is regularly backed up using encryption. Nextcloud uses 4 cookies, 2 of which are there for security to protect from cross site requests. The third cookie is a session ID cookie which contains the status of whether the user is logged in or not. The fourth cookie contains a passphrase, this is needed to store the session data encrypted on the server. The third and fourth cookie are session cookies which expire when the user exits the webpage and are strictly necessary to the functioning of the webpage.

Third Party Processors

Your data may be shared with the following third-party processors to perform our day to day functions and checks have taken place to make sure these processors are GDPR compliant :

Google Analytics – Our website uses google analytics to determine how users use our website. Google Analytics uses, mainly first-party, 4 cookies (_utma, _utmb, _utmc and _utmz).

AppSheet – AppSheet is the application we use to create reports when on site which allows better accessibility for customers wanting to view their site inspection. (https://www.appsheet.com/Home/Privacy)

Tawk.to – Tawk.To hosts the live chat service we use on our website to improve the customer experience and support. Tawk.to uses cookies to provide a live chat session for the user. (https://www.tawk.to/privacy-policy/)

Google Cloud – We use google cloud to store some encrypted backups of our file sharing system as well as storing customer information from AppSheet. (https://policies.google.com/privacy)

Setmore – Setmore is our diary software used for appointment scheduling. (https://www.setmore.com/privacy)

How to contact us

If you have any questions or concerns about use of personal information, please contact us - our Data Protection Officer is Sharlene Budd: Millennium Pest Control Limited Unit 4 Willow Farm Business Centre Allwood Green Diss Norfolk IP22 1LQ or accounts@millenniumpestcontrol.co.uk

If you wish to make a complaint

Contact our Data Protection Officer whom will be able to resolve any questions or concerns you may have about use of your information.

For data protection complaints: Please contact the Information Commissioner: https://ico.org.uk/concerns, or by telephone on 0303 123 1113.