top of page
Abstract black ink scribble shape image on white background.

Privacy Policy

At MsMissMrs, your privacy is very important to us. We want you to be confident that the personal data you give us at any point is safe and secure.

Personal data relates to a living individual who can be identified from that data. Identification can be by the information alone or along with any other information in the data controller's possession. The processing of personal data is governed by the General Data Protection Regulation (GDPR).

In this Privacy Policy we explain how we use your information — why we collect it, your rights and choices, and the steps we take to keep it secure and confidential.

Controller's Contact Details

MsMissMrs is the controller for the personal information we process. This means MsMissMrs decides how your personal data is processed and for what purposes.

If you have any queries relating to our use of your personal information or any other data protection questions, you can contact us:

How We Collect and Use Your Personal Information

Most of the personal information we process is provided to us directly by you for one of the following reasons:

  • You have made an enquiry to us.

  • You have requested information or a service from us.

  • You have bought goods or services from us.

  • You have told us we can contact you with information about our work, invitations to events, or requests for help such as for evaluation and monitoring of our goods and services.

  • You have used our website or other online services.

  • You are representing your organisation.

Data Collected

We may collect the following data, which includes personal data, from you:

  • Name

  • Contact information such as email addresses and telephone numbers

  • Financial information such as credit/debit card numbers, invoicing contact details, purchase order numbers and addresses

  • IP address (automatically collected)

  • Web browser type and version (automatically collected)

  • Operating system (automatically collected)

  • A list of URLs starting with a referring site, your activity on this website, and the site you exit to (automatically collected)

Data Collected Automatically

To the extent that you access the website, we will collect your data automatically, for example:

  • We automatically collect some information about your visit, including your IP address, the date, times and frequency with which you access the website, and the way you use and interact with its content.

  • We collect your data automatically via cookies, in line with the cookie settings on your browser.

Our Use of Data

Data may be used by us for the following reasons:

  • Internal record keeping

  • Fulfilment of purchases of services made online

We may use your data for the above purposes if we deem it necessary to do so for our legitimate interests. If you are not satisfied with this, you have the right to object in certain circumstances (see Your Rights below).

Keeping Data Secure

We will use technical and organisational measures to safeguard your data, for example:

  • Access to your account is controlled by a password and a unique username.

  • We store your data on secure servers.

  • Payment details are encrypted using SSL technology (you will typically see a lock icon in your browser).

If you suspect any misuse, loss, or unauthorised access to your data, please let us know immediately by contacting us at hello@msmissmrs.co.uk.

For detailed information on how to protect your information against fraud, identity theft, and viruses, please visit www.getsafeonline.org (supported by HM Government and leading businesses).

Your Data Protection Rights

Under data protection law, you have important rights. The rights available to you depend on our reason for processing your information.

Your right of access

You have the right to ask us for copies of your personal information. This right always applies, though some exemptions may mean you do not always receive all the information we process.

Your right to rectification

You have the right to have your personal information corrected if it is inaccurate or incomplete. This right always applies.

Your right to erasure

You have the right in certain circumstances to ask us to delete or remove your personal information from our systems.

Your right to restriction of processing

You have the right to ask us to restrict the processing of your information in certain circumstances — to 'block' us from using your personal information or limit the way in which we can use it.

Your right to object to processing

You have the right to object to processing when we process your information because it is in our legitimate interests. If you raise an objection we will stop processing unless very exceptional circumstances apply, in which case we will explain why we are continuing.

Your right to data portability

This only applies to information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another, or give it to you. This right only applies if we are processing information based on your consent or under contract, and the processing is automated.

Exercising your rights

You are not required to pay any charge for exercising your rights. We have one month to respond to you.

To make enquiries, exercise any of your rights, and/or make a complaint, please contact:

The Data Manager
MsMissMrs, 1 Benview St, Glasgow, G20 7SA
hello@msmissmrs.co.uk

If you are not satisfied with how we handle your complaint, you may refer it to the relevant data protection regulator. In the UK, this is the Information Commissioner's Office.

Our Processing Purposes

This section explains the various tasks we undertake and how we process your information to do those tasks.

1 Make a General Enquiry

Purpose and legal basis for processing

When you contact us to make a general enquiry or to request information, we collect information, including your personal data, so that we can respond in the most appropriate way. The legal basis we rely on is legitimate interest. We always balance our legitimate interests with yours as the owner of your own information.

What we need and why we need it

We need enough information to answer your enquiry, which will usually include your contact details. If you telephone us, our system will tell us the number you are calling from (if available) but we will not record it unless you tell us we can. You can choose which contact details to give us and which to ask us to use. We may also record the name of the organisation you represent.

What we do with your information

Unless your enquiry is extremely simple, we will keep a record of it and your contact details so we can respond appropriately. We may keep a record of our response and, depending on complexity, may open a case file. We will keep the information so that, if you contact us again, we have a record of the enquiry and our response. We may also use it to analyse our own work.

How long we keep it

We will keep your information for three years after our last contact with you.

Your rights

You have the rights of: access, rectification, erasure, restriction, and objection.

Our data processors

  • Microsoft SharePoint — email and some cloud storage services

  • WordPress — our website; stores information you supply via website forms

  • LearnDash — our training platform

  • Facebook, Twitter, Instagram — if you contact us via social media, those platforms hold the information you supply

2 Request a Service from Us

Purpose and legal basis for processing

If you request a service from us we need enough information from you to enable us to provide it. The legal basis we rely on is legitimate interests and consent.

If the information you provide contains special category data (such as health, religious, political information, or information related to race or ethnic background), the legal basis we rely on is Article 9(2)(g) of the GDPR, which allows us to process special category information where there is a substantial public interest to do so. We rely on the 'Counselling etc.' provision in Schedule 1, part 2(17) of the Data Protection Act 2018 when you ask us for advice or support relating to someone you are supporting (for example, through social work services).

What we need and why we need it

We need enough information to answer your enquiry, including a way of contacting you such as an email address, home or business address, or telephone number. We will never ask for more information than we need to provide the advice or service you have requested.

What we do with it

We will keep a record of your request and the information you provide so that, if you contact us again, we have a record of your enquiry and our response. We may open a case file and may also use your information to analyse our own work.

How long we keep it

We will keep the information you provide for three years after our last contact with you, after which we will delete it unless you request us not to or there is a legal obligation preventing deletion.

Your rights

You have the rights of: access, rectification, erasure, restriction, and objection.

Our data processors

  • Microsoft SharePoint — email and cloud storage

  • WordPress / LearnDash — website and training platform

  • Facebook, Twitter, Instagram — if you contact us via social media

3 Paid-for Goods or Services

We provide a range of paid-for goods and services, including: Get S.E.T. Rebuild Training.

Purpose and legal basis for processing

If you wish to purchase goods or services from us we need enough information to fulfil your order. The legal basis we rely on is Article 6(1)(b) of the GDPR, which allows us to process your personal data where there is a contract in place between us.

When we collect information about access or dietary requirements for events, we also require your consent as this is special category data — we rely on Article 9(2)(a) of the GDPR in that case.

What we need and why we need it

Depending on what you are purchasing and how you choose to pay, we may need some or all of the following: your name, contact details, billing address, delivery address, and the organisation you represent.

If you are an individual purchasing training or attending an event, we may also need your occupation, relevant previous training or qualifications, and any access or dietary requirements.

If you are purchasing training on behalf of an organisation, we may need the names of attendees. It is your responsibility to ensure you have the right to pass those names on to us.

What we do with it

We use the information to provide the goods or services you have purchased and keep a record of the transaction for accounting purposes and to respond to any complaints, queries, or refund requests.

Where you have purchased training as an individual, we store your details to record that you have been trained by us. We do not share this information unless you ask us to.

Where training is purchased on behalf of an organisation, we may make the fact that your organisation has been trained by us public (for example on social media), but will not share any personal information about individuals without your specific consent.

We also use your information to help analyse and improve our goods, services, and how we provide them.

How long we keep it

We will keep the information and other information relating to the contract for six years after the contract ends, after which we will delete it unless there is a legal obligation preventing us from doing so.

bottom of page