This document covers how MKD Automotive collects, uses, discloses, transfers and stores your personally identifiable data.
1. Who is the Registered Data Controller?
MKD Automotive, Summerson Court, Bleak Hall, Milton Keynes, MK61LE.
Hereafter referred to as the "Company".
2. The Data Controller’s Representative
The Company's Data Protection Officer acts as the Data Controller’s Representative.
3. MKD Automotive
The Company excels in the mot, service and repair of motor vehicles.
4. The Purposes for Processing your Personally Identifiable Data
Any company related website that links to this Privacy Notice
Wi–fi access points
The content of this document applies to you when you use their products and services in centre, online, via social media interactions, telephone, text, websites and any other form of correspondence.
5. Information which may be collected from You
The Company collects your personal identifiable information in order to provide a better service to you. The information you give is stored with your account. Information about the services that you use and how you use them is also collected.
When using The Company website, information from cookies is used to improve your customer experience, including customised search results, spam and malware detection.
The Company may also collect device-specific information (such as your location and mobile telephone number) and log-in
6. Categories of Personally Identifiable Data that are Processed Types/classes of information processed include:
Personal identifiable details - e.g. name, address, email, telephone number
Goods and services
Enquiries, compliments and complaints
Your web browser may provide the Company with information about the device you are using such as an IP address and details about the browser you use.
7. Links to other websites
The Company related websites contain hyperlinks to websites operated by third parties who have their own privacy policies and related cookies. The Company does not accept liability for the privacy practices of these third parties.
The Company is committed to protecting the personally identifiable data you provide. When you share your information with the Company there is a legal obligation for it to only use your data in line with data regulations.
8. Social Media
The Company websites contain links and sharing buttons to third party social media websites e.g. Facebook and Twitter. These third parties may in turn serve you cookies.
When you make contact with the Company via social media channels certain personal data may be shared with the Company about your online activities such as gender, interests and marital status depending on your profile settings. The Company is not responsible for the personal information you share on your social media profiles and you are encouraged to familiarise yourself with the privacy settings of these sites.
9. Maintenance of Website
The Company uses a third party service to help maintain the security and performance of its websites. To do this it processes the IP addresses of website visitors.
10. Online Reporting – Google Analytics
11. Online Advertising – Google Adwords
The Company uses Google Adwords, an online advertising/remarketing tool from Google Inc. to place ads in Google search results and other websites which you may find of interest. To help the Company track sales and other conversions from our advertisements, the Company uses the conversion tracking feature provided by Google Adwords which places a cookie on your device when you click on one of the advertisements. The Company is not responsible for the placement of these cookies. Google uses the information obtained from conversion cookies to compile statistics including the number of users who clicked on the ad and the pages then accessed by each user. Conversion cookies are only active for 30 days and cannot be used to identify any personal information.
Cookies are small data files which are placed on the browser or hard drive of your computer. Cookies distinguish you from other users. This helps to provide you with a good experience when you browse the websites and also allows the Company to improve its websites. It is important to appreciate that the service may not function properly if these cookies are disabled.
15. Persistent Cookies
The Company uses persistent cookies on its websites to remember your account number which can then be automatically completed for you when you access the site. The Company uses persistent cookies on its websites to store your browser settings for future visits. These are held for 1 year.
16. Session Cookies
Session cookies are used to identify your requests whilst you are logged into the website. This allows the Company to provide functionality relevant to your login and improve your website experience.
The Company uses session cookies throughout its websites which are essential to booking systems. Session cookies are used which store information related to your order to enable the Company to assist you if you have a problem with your bookings.
To pre-populate your username on login pages
To assist and enhance your navigation through the websites
Process, manage and account for transactions made on the websites
Assist you with booking problems
18. Blocking Cookies
You may refuse to accept cookies. It may be possible to do this by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all Cookies “using the sliding selector. Search via the "Help" function may provide other options.
19. Deleting Cookies
You can delete cookies already stored on your computer, for example: in Internet Explorer you manually delete the Cookie file. Search via the “Help” function for other methods of deleting cookies.
20. IP Addresses
An "IP Address" (a number that is automatically assigned to the computer that you are using by your Internet Service Provider) may be identified and logged automatically in the Company server log files whenever you access the services, along with the time of the visit and the page(s) that were visited. The Company uses IP Addresses for purposes such as calculating usage levels of the services, helping diagnose server problems and administrating its services.
21. The Company Use of Information
The Company processes your personal identifiable information:
For service administration purposes, carrying out its obligations arising from any contracts entered into by you and it and provide you with the information, products and services that you request from it.
To provide you with information about other goods and services it offers that are similar to those that you have already purposed or enquired about.
To notify you about changes to its services.
To ensure that content of its site is presented in the most effective manner for you.
To administer its site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes.
To measure and understand the effectiveness of advertising it serves to you and others.
The Company will ask for your consent before using your information for a purpose other than that it was provided for or authorised to use.
22. Anonymous and Aggregate Information The Company:
may aggregate personal identifiable information so it does not personally identify you (“pseudonymised data”). For example, it may aggregate personal identifiable information to analyse the percentage of customers have a particular post code.
may remove personal identifiable information to create anonymous data.
uses anonymous and aggregated information for historical, statistical, or business planning purposes.
23. Use of Information to Contact You
Marketing Purposes: The Company will only contact you for marketing purposes where you have given consent to do so. The Company may personalise the message content based upon information you have previously provided and your use of any linked websites.
Social Media: Social Media communications such as: Facebook, Google, Instagram, Snapchat, Twitter etc. will be responded to based upon the information you have previously provided.
Transactional: The Company will communicate with you in order to complete any transactional commitments.
24. Circumstances when The Company may Release Your Information to Others
The Company does not share your personal identifiable information with organisations outside contractual requirements unless one of the following applies:
It is necessary to comply with data protection laws.
Your consent has been obtained and can be evidenced.
A legal requirement exists e.g. to meet a legal obligation or enforceable government request, detect and prevent or address fraud.
Responding to matters of personal or public safety.
Below are the types of organisation with which The Company may need to share some of the personal identifiable data it processes with:
Debit collection and tracing agencies.
Police forces and security organisations.
25. Storage of Personal Identifiable Data
All your personal identifiable data is processed by our staff in the UK, on secure, encrypted software. No third parties have access to your data unless there is a lawful basis to do so.
26. Duration for which The Company will keep your Personal Identifiable Data
The Company holds your personal identifiable data on its systems for as long as is necessary relevant to the transactional, tax and legal obligations and marketing interests consented by you.
Specific details of The Company Data Retention Policy can be obtained from The Company data Protection Officer.
27. Data Security
The Company protects your personal identifiable data from unauthorised access, disclosure or amendments that it holds, including:
Use of encryption.
Two factor authentication.
Secure storage locations.
Regular audit and review of data storage and processing practices including physical safety procedures to guard against unlawful access.
Access to your personal identifiable data is restricted to employees on a need to know basis, suppliers and authorised representatives who are subject to contractual responsibilities.
Unfortunately, the transmission of information via the internet is not completely secure. Although the Company does its best to protect your personal data, it cannot guarantee the security of your data whilst it is transmitted to its site; any transmission is at your own risk. Once in receipt of your information, the Company will use procedures and security measures to prevent unauthorised access.
28. Call Recording
Telephone calls to the Company may be recorded for training and monitoring purposes
29. Your Rights
30. The Right to your Personal Identifiable Data (Access)
You have the right to obtain a copy of your personal identifiable data that is processed by the Company and know the reasons why it processes your data. Upon receipt of a written request made to the Company Data Protection Officer can normally expect a response within one month of the requested data. (Should there be a requirement for an extension of the original one month limit you will be written to with the reasons for any delay). Please note confirmation of a requester’s identity will be essential prior to any release of data being authorised.
If the Company holds personal identifiable data about you, it will:
Provide a description of the data held.
Inform you why the data is being held.
Inform you who the data; is disclosed to.
Provide a copy of the data in a machine readable format (or hard copy).
Depending upon the nature of the request the Company will try to manage the search informally in the first instance e.g. if you are seeking specific data, this may be resolved via a telephone call.
31. The Right to Rectification
You have the right to have any inaccuracies in your personal identifiable data which is stored and processed by the Company to be rectified.
32. The Right to be Forgotten
Under certain circumstances you may request that personal identifiable data is erased.
33. The Right to Restriction of Processing
Under certain specific circumstances you may have the right to prevent the processing of some personal identifiable data.
34. The Right to Notification
Under certain circumstances, the Company has a duty to ensure you are notified of how any intended change of processing of your data may take place which differs to that which you consented for.
35. The Right to Data Portability
Under certain circumstance you have the right to see and have transferred your personal identifiable data in a commonly used and machine-readable format to another Data Controller.
36. The Right to Appropriate Decision Making
You have the right not to have decisions made solely from automated processing. In the event that automated processing is used, please contact the Company Data Protection Officer to obtain an explanation from for the outcome of any automated processing.
The Company asks for your consent as a way of ensuring that the personal identifiable data is processed on your behalf lawfully and you are marketed to appropriately. You have the right to withdraw consent at any time.
Consent to this Privacy Notice is implicit in your use of the Company products and services.
You have the right to lodge a complaint regarding the use of your personal identifiable data. In the initial instance please email the Company Data Protection Officer who will investigate the matter and keep you informed of the investigation progress.
If you are not satisfied with the outcome of the internal investigation you have the right to lodge a complaint with the Information Commissioner’s Office.
39. Policy Changes
reserves the right to amend this Privacy Notice at any time.
will post any revised Privacy Notice on its websites.
40. Queries regarding this Privacy Notice
If you have any questions or comments about this Privacy Notice please contact the Company Data Protection Officer.