UFO Privacy Policy

1. Overview

This Privacy Policy applies to:

  • Data collected via the Universal Fiber Optics Ltd. website (the "Website") which is accessible through the URL’s: www.fiberopticlighting.com, www.universal-fiber-optics.com and www.ufo-lighting.
  • Data collected via direct contact with UFO via telephone, in person, post, fax or email.

We at Universal Fiber Optics Ltd. (the "Company") take your privacy seriously. This policy covers the collection, processing and other use of personal data under the General Data Protection Regulations ("GDPR").

For the purpose of the GDPR the Company is the data controller and any enquiry regarding the collection or processing of your data should be emailed to privacy@fiberopticlighting.com, or via post to: GDPR controls, Universal Fiber Optics Ltd., Home Place, Coldstream, TD12 4DT, United Kingdom.

By using the Website or submitting your data to us directly you consent to this policy.

2. Information we collect

  • We will collect personal data on this Website only if it is directly provided to us by you the user, e.g. your e-mail address, name, postal address and telephone number, and therefore has been provided by you with your consent. Normally you will only provide such details if you are filling in a contact form or are signing up to receive marketing or promotional information.
  • We also use analytical and statistical tools that monitor details of your visits to our website and the resources that you access, including, but not limited to, traffic data, location data, weblogs and other communication data (but this data will not identify you personally).
  • We will collect your personal data which you have provided to us directly by telephone, post, fax, email or in person.
  • We may collect personal data provided to us via a third party to enable us to assist you with specifications or prices for products supplied by the Company. In this instance we are acting as a data processor for the third party, who are the Data Controller and you should refer to their Privacy Policy for further information.
  • We collect no information which is classed as sensitive under the GDPR.
  • 3. Use of your information

    • Any personal data that you provide to us will be processed in strict accordance with one of the six lawful bases for processing as laid out in the GDPR.
    • The information that we collect and store relating to you is primarily used to enable us to provide our services to you and to meet our contractual commitments to you. In addition, we may use the information for the following purposes:
    • To notify you about any changes to our website, such as improvements or service/product changes, that may affect our service;
    • If you are an existing customer, we may contact you with information about goods and services similar to those that were the subject of a previous sale to you;
    • Where you have consented to receive such information, to provide information on other parties products or services that we feel may be of interest to you;
    • Where you have consented to receive marketing or promotional information, to provide that to you.

    4. Disclosure of your information

    • We may disclose your information to regulatory bodies to enable us to comply with the law and to assist fraud protection and minimise credit risk.
    • Where you have consented for us to do so, we may provide your data to selected third parties who may contact you about their goods or services that you may be interested in.
    • If you do not want us to use your data, you will have the opportunity to withhold your consent to this when you provide your details to us on any form on which we collect your data, or you can do so by writing to us at the address detailed in clause 1, or sending us an email to privacy@fiberopticlighting.com at any time.
    • Otherwise, we will process, disclose or share your personal data only if required to do so by law or in the good faith belief that such action is necessary to comply with legal requirements or legal process served on us or the website.

    5. Controlling the use of your data

    • If you have given us consent to use your data for a particular purpose you can revoke or vary that consent at any time. If you do not want us to use your data or want to vary the consent that you have provided you can write to us at the address detailed in clause 1 or email us at privacy@fiberopticlighting.com at any time.

    6. Where we store and transfer your data

    • As part of the services offered to you, for example through our Website, the information you provide to us may be transferred to and stored in countries outside of the European Union (EU) as we use remote website server hosts to provide the website and some aspects of our service, which may be based outside of the EU, or use servers based outside of the EU - this is generally the nature of data stored in "the Cloud". It may also be processed by persons operating outside the EU who work for one of our suppliers, e.g. our website server host or website analytics supplier, or work for us when temporarily outside of the EU.
    • A transfer of your personal data may happen if any of our servers are located in a country outside of the EU or one of our service providers is located in a country outside of the EU. If we transfer or store your personal data outside the EU in this way, we will take steps with the aim of ensuring that your privacy rights continue to be protected, as outlined in this privacy policy and in accordance with the GDPR. If you use our service while you are outside the EU, your personal data may be transferred outside the EU in order to provide you with these services.
    • Data collected via contact with UFO via telephone, in person, post, fax, email or through forms on our Website is stored within our premises in a secure environment – either electronically on our computer servers or, if the data is in paper format, in a secure filing system. All data is controlled so that only authorised personnel have access and any processing that we need to takes place using documented procedures which are governed by one of the lawful bases allowed under the GDPR.

    7. Security

    • The transmission of information via the Internet or email is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of data while you are transmitting it to our site; any such transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to prevent unauthorised access.
    • As detailed in clause 6, all personal data is securely stored within our premises. We have documented procedures for data retention periods and we will destroy all personal data when it is no longer required for processing under one of the GDPR lawful bases.

    8. Third party links

    • You might find links to third party websites on our website. These websites should have their own privacy policies, which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.

    9. Use of cookies

    • Our Website uses cookies. We use cookies to gather information about your computer for our services and to provide statistical information regarding the use of our Website. Such information will not identify you personally - it is statistical data about our visitors and their use of our Website. This statistical data does not identify any personal details whatsoever. We may also gather information about your general Internet use by using a cookie file. Where used, these cookies are downloaded to your computer automatically. This cookie file is stored on the hard drive of your computer, as cookies contain information that is transferred to your computer's hard drive. They help us to improve our Website and the service that we provide to you. All computers have the ability to decline cookies. This can be done by activating the setting on your browser which enables you to decline the cookies. Please note that should you choose to decline cookies, you may be unable to access particular parts of our Website.
    • On their first visit to the Website, visitors are informed about use of cookies and can exit from the site if they do not give consent.

    10. Your rights

    The GDPR sets out your specific rights over the data we hold on you. These rights are:

    • Inform - you have the right to be informed about the way we collect information, the reasons we hold it, what we do with it, how long we hold it for and who it will be shared with. Whenever you asked for personal information we must provide you with privacy information which addresses these points.
    • Access – you have the right to obtain any information we hold on you. Note that although we must provide this information free of charge and within one month, we are able to charge a reasonable administration fee where requests for information are obviously unfounded or excessive – particularly when they are repeated requests. Under the same circumstances we have the right to refuse to respond, but in those cases we must explain why and inform you of your right to complain.
    • Rectify – you have the right to ask that any information we hold on you, which is wrong, be updated or corrected. If you request this either verbally or in writing, we have a period of 30 days to action your request, however under certain circumstances we can refuse the request. We are also able to charge a reasonable administration fee where requests for information are obviously unfounded or excessive – particularly when they are repeated requests. If a request is refused or we deem it necessary to make a charge we will explain the reasons for our decision to you.
    • Erase - you can make a request to us to have information about yourself erased from our records. If you request this either verbally or in writing, we have a period of one month to action your request. This right is not absolute and only applies in certain circumstances. The right to data erasure applies in the following circumstances:
    • When the personal data is no longer necessary for the purpose it was originally collected for.
    • When you withdraw your consent and the Lawful Basis for Processing is ‘Consent’.
    • Where there is no overriding legitimate interest to continue processing data where we have shown the Lawful Basis for Processing is ‘Legitimate Interest’.
    • Where we have processed you information unlawfully.
    • Where we have to comply with a legal obligation.
    • Object – you have the right to object to your information being processed based on 'Legitimate interests'. You can also object to information being used for direct marketing or for the purposes of scientific or historical research and statistics. Objections must be made on grounds relating to your specific circumstances. Once an objection has been raised we must stop processing your data unless we are able to demonstrate compelling legitimate grounds for the processing which override your interests, rights or freedoms or the processing is for the establishment, exercise or defence of legal claims.

    If you wish to exercise any of these rights please contact us stating your full details and the nature of your request, either by emailing privacy@fiberopticlighting.com or writing to us at the address in clause 1 in this document.

    If you have provided consent to us to allow us to send you marketing or promotional emails, you can ask us to stop at any time either by clicking the unsubscribe link in any of these types of emails you have received from us, or by contacting us either via emailing privacy@fiberopticlighting.com or by post, using the details in clause 1 of this document.

    11. Updates to this policy

    • This policy will be updated to reflect any relevant changes to our website content or our procedures and updates will be posted on our site. Any emails that you have consented to receive from us will also contain a link to the most recent version of the policy.