Greenhood Privacy Statement
This policy applies to the processing of personal data in manual and electronic records, It also covers the company’s response to any data breach and other rights under UK GDPR and the Data Protection Act 2018.
Greenhood Limited commits to ensuring that personal data, including special categories of personal data is processed in line with GDPR and domestic laws, and other related, policies.
Where third parties, process data on behalf of the company, the company will ensure the third party takes such measures in order to maintain the company’s commitment to protecting data.
In line with GDPR, the company understands that it will be accountable for the processing, management, and regulation, and storage, and retention of all personal data held in the form of manual records and on computers.
When visitors leave comments on the site we collect the data shown in the comments form, also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
If you request a password reset, your IP address will be included in the reset email.
How long do we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights do you have over your data?
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service
Responsibility of the controller
- Taking into account the nature, scope, context and purposes of processing as well as the risks of varying likelihood and severity for the rights and freedoms of natural persons, the controller shall implement appropriate technical and organisational measures to ensure and to be able to demonstrate that processing is performed in accordance with this Regulation. Those measures shall be reviewed and updated where necessary.
- Where proportionate in relation to processing activities, the measures referred to in paragraph 1 shall include the implementation of appropriate data protection policies by the controller.
Greenhood Limited will ensure all personal data obtained and held will be processed fairly, lawfully and in a transparent manner.
Be collected for specific, explicit, and legitimate purposes, be adequate, relevant and limited to what is necessary for the purposes of the processing, and be kept accurate and up to date.
Every reasonable effort will be made to ensure that inaccurate data is rectified or erased without delay, not be kept for longer than is necessary for its given purpose
Be processed in a manner that ensures appropriate security of personal data including protection against unauthorised or unlawful processing, accidental loss, destruction or damage by using appropriate technical or organisation measures
Comply with the relevant GDPR procedures for international transferring of personal data.