1.1 Information you provide by completing entry forms when registering to sell or information given when registering to bid on items in a sale. This information for example could be; name, address, postcode, telephone number(s), Email address, bank details.
1.2 We may keep a record of your details if you contact us.
3.1 All information provided by you is stored on our secure servers or securely held in hard file form at our salerooms. Transaction data is encrypted for your safety.
4.3 Notify you of changes of our services or company.
4.4 Analyse information about our users to identify their potential preferences.
4.5 Due to our legitimate business interest we will keep your details for as long as is necessary to provide the relevant services, maintain business records to satisfy tax, legal and other regulatory requirements, and protect and defend against potential legal claims.
At times we may need to disclose your personal information to persons in our company. This can be subsidiaries, holding companies, or other suppliers if involved in our business.
5.2 We will not disclose your personal data to any third party outside of the company for the purpose of direct marketing but we may, with your consent, provide you with information about goods/services at Mallams which we feel may be of interest to you.
6.1 Within the GDPR you have the following rights over your personal data the we hold:
6.1.1. The right to be informed of the data we hold about you.
6.1.2.The right to access information held about you free of charge. If you would like access to your personal information please contact the Mallams Data Officer, details at the end of this policy.
6.1.3.The right to rectify information held about you.
6.1.4.The right to ask Mallams to delete personal data held about you. To request deletion of personal data, please contact the Data Officer, details at the end of this policy. We will respond to your request for deletion one month from when the request is received.
6.1.5.The right to move your personal data from Mallams database/files to another location/company.
7.1 We will report all data breaches to the ICO within 5 working days of becoming aware of the breach, where feasible. If required we will also inform the individual(s) without undue delay. A record will be kept of all data breaches.
Questions about this policy can be addressed to our Data Officer, Catherine Leach, on Email: firstname.lastname@example.org.