Privacy Policy
Last modified: January 12, 2025
What Personal Data do we collect about you
Any reference in these Terms and Conditions to R & C COLLECTIONS LTD ("R&C") shall be deemed to include R&C and/or any holding company thereof for the time being and/or any subsidiary company for the time being of R&C or of any such holding company.
If you are:
An employee of R&C, someone working with us under a contract for services, or someone who applies for employment or work with us, we will provide you with specific privacy information and also ask for your consent to use Special Categories of Personal Data which we’re likely to obtain as a result of our working relationship. Although you should refer to any more specific privacy information we give you, we will also collect the following information on you:
- Identity Data includes first name, last name, title, job title, role or similar identifier, and gender, as well as proof of identity and your right to work in the UK. To prevent and record any criminal activity and promote a safe working space, R&C has CCTV on its premises.
- Contact Data which may include your address, email address, and telephone numbers.
- Financial Data to provide pay, benefits and conduct other financial transactions with you.
A business contact, including persons who supply us with goods (including hiring items to us) or services and any contacts at a company or other organisation that does so, we may collect the following types of data on you:
- Identity Data includes first name, last name, title, job title, role or similar identifier, and gender. To prevent and record any criminal activity and promote a safe working space, R&C has CCTV on its premises.
- Contact Data includes your work address, email address, and telephone numbers.
- Financial Data if we supply or purchase goods and services from you as an individual (including sole traders and partnerships), we may record and retain details of those transactions and any Personal Data associated with them.
A client or potential client, being a company or other organisation that has approached us to instruct or potentially instruct our services, we may collect the following types of data on you:
- Identity Data includes first name, last name, title, job title, role or similar identifier, and gender. In some instances, we may be required to capture Directors’ home addresses, proof of home addresses, and dates of birth. To prevent and record any criminal activity and promote a safe working space, R&C has CCTV on its premises.
- Contact Data includes your work address, email address, and telephone numbers.
- Financial Data to provide the relevant financial information to potential funders. This may include information about the business’s Directors, such as whether you are a homeowner, personal bank statements, and personal asset and liability statements.
- Any other data that potential funders may require.
A customer or debtor of our client or funder, including persons we have identified or been notified as customers for our client and any contacts at a company or other organisation which has similarly been identified, we may collect the following types of data on you:
- Identity Data includes first name, last name, title, job title, role or similar identifier, and gender. To prevent and record any criminal activity and promote a safe working space, R&C has CCTV on its premises.
- Contact Data includes your work address, email address, and telephone numbers.
- Financial Data to provide our ledger analysis and debt collection services to our clients. This includes management and other accounts, contracts for the sale of goods and services, all information concerning debts owed to or by your organisation, and any other financial data relevant to our services.
- Any other data that our client may instruct us to collect.
Under the GDPR, we are required to ensure any personal data we hold is accurate and, where necessary, kept up to date, and that we keep it for no longer than necessary for the purposes for which we use it. We may also be required by law to retain certain types of data for a longer period.
All telecommunications data is kept in line with the European Union’s Data Retention Directive, for a minimum of one year and a maximum of two years. A copy is archived for the minimum period, after which time all archived data is purged and erased.
If you fail to provide Personal Data
Where we need to collect Personal Data by law or under the terms of a contract we have with you, and you fail to provide that data when requested:
- We may not be able to agree, enter into, or perform a contract with you or a person or organisation associated with you;
- If you are an employee, contractor, or applicant for a position with us, we may not be able to consider your application, provide you with pay or benefits, or administer a contract for services or an employment contract with you;
- We may not be able to fulfil our legal obligations in respect of you, your organisation, or as required under relevant law. We may also have to take steps to protect our legal position (for example, under anti-money laundering or anti-bribery laws), which could affect our ability to do business with you or your organisation.
What we do with Your Data
We will only use your personal data when the law allows us to. Most commonly, we will use, analyse, and assess your personal data in the following circumstances, utilizing the communication services available to us, such as direct mail, email, SMS, and/or telephone:
- To provide you with information, products, or services that you request;
- To inform you about other products and services that we think you might be interested in;
- To make financial risk assessments, prevent money laundering, fraud, or other wrongdoing;
- To provide potential funders with relevant information in order to fulfil our contractual obligations with you;
- To identify you as a potential client;
- To recover monies due;
- To protect our interests (including providing information to third parties retained by us to conduct services on our behalf);
- To enter into or negotiate contracts, or to fulfil our legal and regulatory obligations.
In obtaining or storing information about you, we may:
- Store and process information about you, including on our computers and in any other way;
- Search your record at a credit reference or fraud prevention agency of our choice. Details of our searches may be kept by such agencies and may be seen by other organisations that make searches with the agency;
- Monitor and/or record telephone conversations with you for training and/or security purposes and to demonstrate our compliance with our legal obligations (including under the GDPR);
- Conduct market research and analysis to enable us to better understand the needs of our customers, debtors, clients, and business contacts, and to tailor our services and communications to their needs and circumstances;
- Seek and record any further information that we may require from any source, including banks, for any of the purposes set out above;
- Transfer the information that we may have to other members of the Group or to our potential funders.
If you do not want your data to be used by us or selected third parties for marketing purposes, please ensure that you select the appropriate option on any of our online forms. You can also notify us at any time if you do not wish your data to be used in this way.
Where is the Personal Data sourced?
We collect two types of information from site users and other individuals we contact in the course of our business: statistical data (e.g., how many users visit the site and which pages they view) and Personal Data (including names and email addresses).
Statistical Data: The statistical data we capture includes your IP address as you browse the site. This data is purely for website statistics, helping us record the number of users to the site and which pages are visited. This information does not identify you, and we use it only to monitor the effectiveness of the site.
Personal Data: Personal data is obtained from a variety of sources, depending on the agreement with our client or funder.
In some cases, data will have been provided by our client, funder, or directly obtained from customers. Additionally, we source or purchase data from GDPR-compliant data providers and online resources in the public domain.
We may receive Personal Data about you from various third parties and public sources, including directors, shareholders, and employees at any business or organisation you are associated with, public registers, credit reference agencies, and public bodies or authorities.
We process personal data relating to individuals within the businesses we are instructed to review on behalf of our clients. Additionally, we will occasionally process data relating to debtors of those businesses on a confidential basis.
We also obtain personal data through offline methods, either directly (e.g., via telephone or instruction form when you consent to your data being shared with our client to access their goods or services) or indirectly (e.g., from your colleagues when they inform us that you’re the most appropriate contact).
Personal data is only captured online when you provide it, such as when filling in a quotation or contact form, subscribing to our email service, engaging in a Live Chat conversation, downloading a resource, or entering a competition.
We may also receive Personal Data about you from other members of our Group in connection with the business of the Group or any member of the Group.
Accuracy of Data
Core to our service is ensuring the data we are working with is up to date and accurate. We may do this ourselves or engage a third-party service provider to assist. Third-party service providers may compare your data to publicly available information or to information they lawfully hold or obtain about you. They may analyse or provide this data to us to help us conduct our business. We will ensure that any service provider processes your information in a manner that complies with the law.
If you believe that the data we hold about you is incorrect, please contact us at dataprotection@rccollectionsltd.com.