1. SCOPE OF POLICY
2. HOW WE COLLECT INFORMATION
We may collect and process the following data about you:
- 2.1 Information you give us. You may give us information about you by filling in forms on our website www.qubictax.com or by corresponding with us by e-mail or otherwise. This includes information you provide when you create an account or report a problem with our website. The information you give us may include your name, address, e-mail address and phone number (including mobile number), financial and credit information and personal description.
- 2.2 With regard to each of your visits to our website we may automatically collect the following information:
- 2.2.1 technical information, including the Internet Protocol (IP) address used to connect your computer to the Internet, the type of mobile device you use, a unique device identifier (for example, your Device's IMEI number, the MAC address of the Device's wireless network interface, or the mobile phone number used by the Device), your login information, browser type and version, time zone setting, browser plug-in-types and versions, operating system and platform;
- 2.2.2 information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); products or services you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number;
- 2.2.3 details of your use of our website and the resources that you access.
- 2.3 In the course advising, acting for you or considering if we may act, we may ask you to provide us with information including:
- 2.3.1 your name, address, e-mail address, phone number (including mobile number), financial and credit information. We may also collect information to check your identity (such as your date of birth, passport or driving licence details) and to undertake a credit or other financial check on you;
- 2.3.2 information relating to the matter on which you are seeking our advice or services. To the extent that it is relevant to the subject matter on which we are instructed such information may include but is not limited to, your financial details, including your National Insurance number, employment status, tax details, business details, pension arrangements, banking details and details of your assets and liabilities.
- 2.4 Information we receive from other sources. We may collect information with your consent from third parties acting on your behalf including from your accountant, financial advisor, legal representative, bank or building society or other financial institution and your employer.
- 2.5 We may also collect information about you from other third parties sources such as credit reference agencies, sanctions screening providers and from publically accessible sources such as Companies House.
3. USES MADE OF THE INFORMATION
We use information held about you in the following ways:
- 3.1 Information you give to us. We will use this information:
- 3.1.1 to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
- 3.1.2 to identify our clients, verify their identity, to screen for applicable financial sanctions or other embargoes as well as any other processing required in order to comply with any legal or regulatory obligations we may have;
- 3.1.3 to ensure the confidentiality of commercially sensitive information, which will be carried out for our legitimate interests or those of a third party (i.e. to protect commercially valuable information) and/or to comply with any legal or regulatory obligations we may have;
- 3.1.4 to provide information required by or relating to audits, enquiries or investigations by regulatory or governmental bodies, which will be carried out in order for us to comply with any legal or regulatory obligations we may have;
- 3.1.5 to carry out anonymised statistical analysis to help us manage our practice, for example in relation to our client base and areas of work. This will not amount to automated individual decision making or profiling. The basis of this processing will be for our legitimate interests of managing the efficiency of our practice;
- 3.1.6 to carry out credit reference checks via external credit reference agencies. Such checks will not be automated individual decision making or profiling. We will notify any natural persons before such checks are carried out, which shall be carried out for the purpose of our legitimate credit control interests and/or with the consent of the individual in question;
- 3.1.7 to carry out external audits and quality checks, for example in relation to Investors in People accreditation, which will be carried out on the basis of our legitimate interests in maintaining high standards of practice and/or to comply with any legal or regulatory obligations we may have;
- 3.1.8 to undertake internal testing of our website, IT systems and services to test and improve their security, provision and performance, which will be carried out for our legitimate interests of detecting and preventing criminal activities and/or to comply with any legal and regulatory obligations we may have;
- 3.1.9 for the purpose of our Statutory Returns, in order to comply with our legal and regulatory obligations;
- 3.1.10 to notify you about changes to our service;
- 3.1.11 to ensure that content from our site is presented in the most effective manner for you and for your computer.
- 3.2 Information we collect about you. We will use this information:
- 3.2.1 to administer our website and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
- 3.2.2 to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
- 3.2.3 to allow you to participate in any interactive features of our service, when you choose to do so and if provided by us;
- 3.2.4 as part of our efforts to keep our site safe and secure;
- 3.2.5 to measure or understand the effectiveness of marketing we provide to you and others and to deliver relevant marketing to you;
- 3.2.6 to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them. Any analysis of data will not be automated individual decision making or profiling. The basis of this processing will be our legitimate commercial interests including managing the efficiency and security of our website and the practice of our firm.
- 3.3 Information we receive from other sources. We may combine this information with information you give to us and information we collect about you. We may use this information and the combined information for the purposes set out above (depending on the types of information we receive).
A cookie is a small file of letters and numbers that we store on users' browsers or the hard drive of users' computers if users agree. Cookies contain information that is transferred to users' computers' hard drive. We use the following cookies:
- Strictly necessary cookies. These are cookies that are required for the operation of our site. They include, for example, cookies that enable users to log into secure areas of our site or make use of e-billing services.
- Analytical/performance cookies. They allow us to recognise and count the number of visitors and to see how visitors move around our site when they are using it. This helps us to improve the way our site works, for example, by ensuring that users are finding what they are looking for easily.
- Functionality cookies. These are used to recognise users when they return to our site. This enables us to personalise our content for users, greet users by name and remember users' preferences.
- Targeting cookies. These cookies record users' visits to our site, the pages users have visited and the links users have followed. We will use this information to make our site and the advertising displayed on it more relevant to users' interests. We may also share this information with third parties for this purpose.
- Users can block cookies by activating the setting on their browser that allows users to refuse the setting of all or some cookies. However, if users use their browser settings to block all cookies (including essential cookies) users may not be able to access all or parts of our website. Except for essential cookies, all cookies will expire after 12 months.
5. DISCLOSURE OF YOUR INFORMATION
We may share your data with selected parties including:
- 5.1 professional advisers who we instruct on your or our behalf, including solicitors, barristers or other experts;
- 5.2 our insurers and brokers;
- 5.3 external auditors, eg in relation to company accreditation and the audit of our accounts;
- 5.4 our bank(s);
- 5.5 Business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you;
- 5.6 Our service providers and agents (including their subcontractors) or third parties which process information on our behalf (e.g. IT service providers, internet service and platform providers, payment processing providers and those organisations we engage to help us send communications to you) for the purpose of providing you with the information and services you have requested or which we believe is of interest to you;
- 5.4 Analytics and search engine providers that assist us in the improvement and optimisation of our site; We may disclose your personal information to third parties:
- 5.5 In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
- 5.6 If Qubic Tax Limited or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
- 5.7 If we are under a duty to disclose or share your personal data to any third party including government departments, our firm’s regulatory authority or law enforcement agencies in order to comply with any legal or regulatory obligation we may have or in order to enforce or apply our website terms and conditions (http://www.qubic.tax/legal/terms/) and the terms of engagement, to our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
6. SECURITY AND STORAGE INFORMATION
We will keep your information secure by taking appropriate technical and organisational measures against its unauthorised or unlawful processing and against its accidental loss, destruction or damage. Any payment transactions will be encrypted using SSL technology. We limit access to your personal data to those who have a genuine business need to access it. Those processing your information of our behalf, will do so only in an authorised manner and are subject to a duty of confidentiality. In the event of a suspected data breach we will notify you and any applicable regulator where we are legally required to do so.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
7. WHERE WE STORE YOUR PERSONAL DATA
Information we collect or you provide to us may be held at our offices, those of service providers including IT service providers (and their sub-processors), third party agencies, representatives and agents described above, at destinations within the European Economic Area (“EEA”). Your personal data may also be stored on our secure servers or those of our IT service providers, at destinations within the European Economic Area.
Our IT service providers may transfer on our behalf your data to countries outside the EEA. We will ensure that the transfer complies with applicable data protection laws and all personal data will be secure. To do so, our practice is to use data protection contractual clauses including the European Commission’s Standard Model Clauses for transfers of personal data outside the EEA.
Our IT service providers may also transfer on our behalf your data outside of the EEA to the United States. We will ensure any such transfer complies with data protection laws (including pursuant to relevant adequacy decision(s) of the European Commission concluding that organisations which are registered under the EU-US Privacy Shield provide an adequate level of protection for personal data transferred from EU to such US organisations) and all personal Information will be secure.
8. YOUR RIGHTS
You have the following rights, which you can exercise free of charge:
- the right to be told how we use your personal data and obtain access to your personal data;
- the right to require us to correct any mistakes in your personal data;
- the right to require us to delete your personal data in certain situations;
- the right to require us to restrict processing of your personal data (e.g. for direct marketing purposes; e.g. where you contest the accuracy of the data);
- the right to receive, where technically feasible, your personal data in a structured commonly used and machine-readable format and/or to require us to transmit your personal data in that form to a third party;
- the right to object at any time to your personal data being processed for direct marketing;
- the right to object in certain circumstances to our continued processing of your personal data (e.g. processing carried out for the purpose of our legitimate interests)
- where the processing of your personal data is based on your consent, the right to withdraw that consent;
- the right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you;
For further information on each of those rights, including the circumstances in which they apply, please see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation (https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/). If you would like to exercise any of those rights, please:
- e-mail, call or write to us (see How to Contact Us (below); and
- provide us with: (i) sufficient information to identify you (e.g. you full name, address and any client reference number); and (ii) proof of your identity and address (e.g. a certified true copy of your passport or driving licence and a recent credit card or utility bill);
- let us know what right you want to exercise. We will keep your personal information for the duration of our business relationship.
We will also keep your personal data after we have finished acting for you in order to respond to any questions, complaints or legal disputes in relation to the business relationship, to demonstrate that we have treated you fairly and to keep any records required by law. We will also retain your personal data for our legitimate business purposes. We will not retain your data for longer than necessary for the purposes set out in this policy. Different retention periods apply for different types of data in accordance with our data retention, marketing and destruction policies, confirmation of which are available on request.
10. HOW TO COMPLAIN
We hope that we can resolve any query or concern you may raise about the use of your personal data.
The General Data Protection Regulation also gives you the right to lodge a complaint with the supervisor authority responsible for data protection matters, which in the UK is the Information Commissioner’s Office (the “ICO”). The ICO may be contacted at https://ico.org.uk/ or by telephone (0303 123 1113).
11. HOW TO CONTACT US
Our contact details are:
Registered address: St Ann’s Quay, 118 Quayside, Newcastle upon Tyne, NE1 3BD
Telephone: 0191 232 2001