This policy (together with our terms and conditions and any other polcieis referred to) sets out the basis on which any personal data we collect from you will be processed by us.
STEP is the trading name of Stirling Enterprise Park Ltd. Registered in Scotland Company Number SC085314.
Pursuant to that legislation, when processing data we will:
STEP is a “data controller”. This means that we are responsible for determining the purpose and means of processing personal data relating to you.
“Personal data”, or “personal information”, means any information relating to an identified, or identifiable individual in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
We may collect the following information:
We may collect this information when:
We may process your data to:
STEP delivers Business Gateway services for Stirling and we may share your information with our Business Support department who deliver this contract if their services will benefit you. We will not share your information for marketing purposes with any company outside of STEP unless you have given explicit consent.
We would like to send you relevant information about products and services of ours. If you have consented to receive marketing, you may opt out at a later date.
You have the right at any time to stop us from contacting you for marketing purposes. If you no longer wish to be contacted for marketing purposes, please get in touch via any of the methods below.
When you sign up for our mailing list you will receive ad hoc newsletters informing you ‘what’s on’ at STEP and Business Gateway Stirling. This may include some news and product information.
If you make a property enquiry and are not ready to take on premises you will be added to our vacant property newsletter mailing list and receive a quarterly email detailing what property we have available.
You may unsubscribe to any of our mailing lists at any time by contacting us or selecting unsubscribe on the latest newsletter you have received.
We will comply with requests for specific information from regulatory and law enforcement bodies where this is necessary and appropriate.
Where appropriate we also share your personal information with our partners.
These partners include:
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online or offline. We use Microsoft Dynamics Office 365 CRM software to ensure your data is secure online.
Any paper data is secured in locked drawers, offices and/or safes.
How long we store your information will depend on the purpose it was collected. For further information on our retention guidelines please get in touch.
We commit to ensure that any data we process is correct and up to date. It is your obligation to make us aware of any changes to your personal information.
In some situations, you may have the:
Where you have provided consent to our use of your data, you also have the unrestricted right to withdraw that consent at any time. Withdrawing your consent means that we will stop processing the data that you had previously given us consent to use. There will be no consequences for withdrawing your consent. However, in some cases, we may continue to use the data where so permitted by having a legitimate reason for doing so.
If you wish to exercise any of the rights explained above, please get in touch.
We collect cookies to allow us to measure and analyse the behaviours of our website visitors. Individual user data is not stored and, once the statistical information has been analysed, it is removed from the system.
Web browser cookies
If you wish to restrict or block web browser cookies which are set on your device then you can do this through your browser settings; the Help function within your browser should tell you how. Alternatively, you may wish to visit www.aboutcookies.org, which contains comprehensive information on how to do this on a wide variety of desktop browsers.
Links to other sites
This website contains links to external websites. Privacy policies on these sites may vary and, as such, we are not responsible for the content or privacy policies of these sites.
To ensure that you’re confident that we’re using CCTV and other similar devices responsibly we’ve noted our obligations below. “CCTV” relates to Closed Circuit Television.
Before installing the CCTV we carried out a privacy impact assessment to ensure we were balancing our need for CCTV with the impact on your privacy.
We have installed CCTV to:
(a) prevent and detect crimes;
(b) identify, apprehend and prosecute offenders;
(c) dealing with any queries, complaints or enquiries;
(d) ensure the security of our and your property and that of our clients and contractors;
(e) ensure that our policies and procedures are being adhered to;
(f) to assist in any investigations or any disciplinary or grievance issue;
(g) monitor the safety and security of our premises;
(h) monitor adherence to health and safety provisions and policies.
As well as being the purposes for which we use your personal information, all of the above are also legitimate reasons for us to use and store personal data. Images captured by CCTV may be monitored and recorded and kept for up to thirty days after the recording was made. After this time to recording stored on the hard drive of our CCTV system will usually be overwritten.
Any information captured by CCTV will be viewed in a restricted area and only by the DPO and any authorised people. All CCTV is maintained and overseen by our DPO. They are responsible for carrying out compliance audits and reviewing the need for CCTV.
Where we capture your personal data using CCTV we will let you know by using appropriate signage.
You have the right to view any personal data recorded by our CCTV, this will depend on other personal data of anyone else on the recordings which it may not be possible to redact.
It is a criminal offence to misuse CCTV. All data captured via CCTV will be treated per this policy.
It is the responsibility of our Data Protection Officer (DPO) to oversee compliance with this statement. Should you have any questions regarding this statement, or how we process your personal information, please get in touch.
The supervisory authority in the UK for data protection matters is the Information Commissioner (ICO). If you think your data protection rights have been breached in any way by us, you are able to make a complaint to the ICO.
General Data Protection Act
STEP is fully compliant with the General Data Protection Regulations 2018 (DPA 2018).
Get in touch
|Data Protection Officer|
You can get in touch with us via:
Call: 01786 463 416