We take your privacy very seriously. This privacy notice will inform you as to how we look after your personal data when you visit our website https://www.purecremation.co.uk/ (our Website) (regardless of where you visit from) and when you correspond with us by telephone, email or otherwise. It tells you about your privacy rights and how the law protects you.
This privacy notice aims to give you information on how Pure Cremation Limited collects and processes your personal data through the use of our Website, including any data you may provide through our Website when you make an online enquiry, begin arranging a direct cremation, request a call back, post reviews about our service and report a problem with our Website and when you correspond with us by telephone, email or otherwise.
Our Website is not intended for children and we do not knowingly collect data relating to children.
It is important that you read this privacy notice together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements the other notices and is not intended to override them.
Pure Cremation Limited (“we”, “us”, “our”) is a ‘data controller’ for the purposes of your personal data. This means that we determine the purpose and means of the processing of your personal data. You will find our contact details at the end of this privacy notice (see below: “How to contact us”).
Our Data Privacy Officer is Saba Munir. You will find their contact details at the end of this privacy notice (see below: “How to contact us”).
Personal data is any information relating to an identified or identifiable individual.
We collect, use, store and transfer different kinds of personal data about you. This may include:
For individual applicants or prospective applicants, where we need to collect personal data to enter into a contract with you and you fail to provide that data when requested, we may not be able to enter into the contract with you. This data may include your name and contact information. For individual applicants, if you thereafter do not provide the personal data we ask for which may include payment information, this may delay or prevent us from providing our services to you.
Depending on the circumstances, we use different methods to collect personal data from and about you including:
Under data protection law, we can only use your personal data if we have a proper reason for doing so, for example:
A legitimate interest is when we or a third party have a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests.
The table below explains what we use your personal data for and our lawful basis for doing so.
|What we use your personal data for||Our lawful basis for processing data|
|For individual applicants with whom we have contracts – to provide our services to you||Necessary for the performance of our contract with you or to take steps at your request before entering into a contract with you|
|To manage our relationship with you which will include (where appropriate) notifying you about changes to our terms of business or privacy notice||Necessary to comply with our legal obligations
Necessary for our legitimate interests i.e. to manage our relationship with you and to analyse and improve the services we offer
|To prevent and detect fraud against you or us||Necessary for our legitimate interests or those of a third party i.e. to minimise fraud that could be damaging for us and for you|
|Other processing necessary to comply with legal and regulatory obligations that apply to our business (e.g. under health and safety regulations or as required by our regulator) or as otherwise permitted or required by law||Necessary to comply with our legal obligations|
|Gathering and providing information required by or relating to audits, enquiries or investigations by regulatory bodies||Necessary to comply with our legal obligations|
|Ensuring business policies are adhered to e.g. policies covering data security||Necessary to comply with our legal obligations
Necessary for our legitimate interests or those of a third party e.g. to make sure we are following our own internal procedures so we can deliver the best service to you
|Operational reasons, such as improving efficiency, training and quality control||Necessary for our legitimate interests or those of a third party e.g. to be as efficient as we can so we can deliver the best service for you at the best price|
|Ensuring the confidentiality of commercially sensitive information||Necessary to comply with our legal obligations
Necessary for our legitimate interests or those of a third party i.e. to protect commercially valuable information
|Statistical analysis to help us manage our business e.g. in relation to our financial performance, customer base, product range or other efficiency measures||Necessary for our legitimate interests or those of a third party e.g. to be as efficient as we can so we can deliver the best service for you at the best price|
|Preventing unauthorised access and modifications to systems||Necessary to comply with our legal obligations
Necessary for our legitimate interests or those of a third party e.g. to prevent and detect criminal activity that could be damaging for us and for you
|Updating and maintaining applicant records||For individual applicants, necessary for the performance of our contract with you or to take steps at your request before entering into a contract
Necessary to comply with our legal obligations
Necessary for our legitimate interests or those of a third party e.g. to make sure we can keep in touch with our customers and other contacts
|Staff management and administration||Necessary for our legitimate interests or those of a third party e.g. to make sure we are following our own internal procedures and working efficiently so we can deliver the best service we are able to|
|External audits for the audit of our accounts||Necessary to comply with our legal obligations|
|To make suggestions and recommendations to you about products or services that may be of interest to you||With your consent (see “Marketing Communications” below e.g. to develop our products/services and grow our business|
|To enforce or apply our Website terms and conditions or any other agreements||Necessary for our legitimate interests or those of a third party e.g. to enforce our legal rights and protect our business|
|To administer and protect our business and our Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)||Necessary for our legitimate interests e.g. for running our business, provision of administration and IT services, network security and to prevent fraud
Necessary to comply with our legal obligations
|To deliver relevant website content to you and measure or understand the effectiveness of the content||Necessary for our legitimate interests e.g. to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy|
|To use data analytics to improve our Website, products/services, marketing, customer relationships and experiences||Necessary for our legitimate interests e.g. to define types of customers for our products and services, to keep our Website updated and relevant, to develop our business and inform our marketing strategy|
|For testimonials on our Website||Necessary for our legitimate interests or those of a third party e.g. for you to provide independent feedback on your experience of our services/products so we can improve this if necessary and for members of the public to have the benefit of an independent rating|
Where we rely on consent as a lawful basis to process your personal data, you have the right to withdraw your consent at any time. To do this, please telephone, email or write to us (see below: “How to contact us”).
Please note that we may process your personal data without your knowledge or consent where this is required or permitted by law.
We will get your express consent before we share your personal data with any other company or company within our group companies for marketing purposes.
You have the right to opt out of receiving marketing communications at any time by:
We may ask you to confirm or update your marketing preferences if there are changes in the law, regulation, or the structure of our business.
Depending on the circumstances, we may share your personal data with:
We only allow our service providers to handle your personal data if we are satisfied they take appropriate measures to protect your personal data.
We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal obligations.
We may also need to share some personal data with other parties, such as potential buyers of some or all of our business or during a re-structuring. Usually, information will be anonymised but this may not always be possible.
Some of organisations with whom we share your personal data are based outside the European Economic Area (EEA) (which comprises the countries in the European Union and Iceland, Liechtenstein and Norway) so their processing of your personal data will involve a transfer outside of the EEA.
These transfers are subject to special rules under European and UK data protection law.
Whenever we transfer your personal data outside of the EEA, we ensure a similar degree of protection is afforded to your data by ensuring one of the following (or one of the other grounds set out in data protection law) applies:
Please contact us (see below: “How to contact us”) if you want further information on the specific mechanism used by us when transferring your personal data outside of the EEA.
Data protection law gives you certain rights, which you can exercise free of charge. Your rights will differ depending on our lawful basis for processing your data:
|Access||The right to be provided with a copy of your personal data|
|Rectification||The right to require us to correct any mistakes in your personal data|
|To be forgotten||In certain situations, the right to require us to delete your personal data|
|Restriction of processing||In certain situations, the right to require us to restrict processing of your personal data e.g. if you contest the accuracy of the data|
|Data portability||In certain situations, the right to ask us to transfer any personal data you provided to us to another organisation|
|To object||The right to object at any time to your personal data being processed for direct marketing and in certain other situations to our continued processing of your personal data e.g. where processing is carried out for the purpose of our legitimate interests|
|Not to be subject to automated individual decision making||The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you|
We do not use personal data for automated decision making.
For further information on each of those rights, including the circumstances in which they apply, please contact us or see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation.
If you would like to exercise any of those rights, please email or write to us (see below: “How to contact us”) and let us have enough information to identify you e.g. your full name and address as well as what right you want to exercise and the personal data to which your request relates.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including;
We will not retain your data for longer than necessary for the purposes set out in this notice. Different retention periods apply for different types of personal data.
We have put in place reasonable and appropriate security measures to endeavour to prevent personal data from being accidentally lost, or used or accessed unlawfully. We limit access to your personal data to those who have a genuine business need to access it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Website; any transmission is at your own risk.
Our Website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies. When you leave our Website, we encourage you to read the privacy notice of every website you visit.
We have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
We hope that we can resolve any query or concern you may raise about our use of your personal data. If you want to complain about how we have used your personal data, please email or write to us (see below: “How to contact us”). However, if we are not able to resolve your complaint to your satisfaction, you can complain to the UK’s supervisory authority, the Information Commissioner’s Office (ICO). Further information about how to make a complaint to the ICO can be found on the ICO website www.ico.org.uk.
The EU General Data Protection Regulation also gives you right to lodge a complaint with the supervisory authority in the European Union state where you work, normally live or where any alleged infringement of data protection laws occurred.
This version was last updated in November 2020.
We may change this privacy notice from time to time and when we do so, we will inform you via our Website.
Please let us know if you change your name, address or any other personal detail (see below: “How to contact us”).
If you have any queries about this privacy notice or how we use your personal data, you can contact us by email or post as follows:
Saba Munir, Regulatory Compliance Manager
Charlton Park Crematorium
If you would like this notice in another format (for example large print) please contact us (see above: “How to contact us”).