Last updated: August 2023
At My Content Pal Ltd, safeguarding your personal information is a fundamental principle of our business. We are dedicated to maintaining your trust and confidence, and we want to assure you that we handle your data responsibly and with utmost care. Rest assured, we do not engage in the sale, rental, or trading of any of your data to any third party for any purpose.
Information we collect
When you visit our website, our servers may automatically log the standard data provided by your web browser. It may include your computer’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, and other details.
We may also collect data about the device you’re using to access our website. This data may include the device type, operating system, unique device identifiers, device settings, and geo-location data. What we collect can depend on the individual settings of your device and software. We recommend checking the policies of your device manufacturer or software provider to learn what information they make available to us.
Types of Data Collected:
Personal Identifying Information (PII)
Sensitive or Special Categories of Data
User Generated Content
Social Media Data
Purposes of Data Collection:
Providing Services or Products
Communication and Customer Support
Marketing and Promotions
Personalisation and User Experience
Analytics and Research
Legal and Regulatory Compliance
Fraud Prevention and Security
Surveys and Feedback
Processing of Data
The lawful bases for processing are set out in Article 6 of the UK GDPR. At least one of these must apply whenever you process personal data:
(a) Consent: the individual has given clear consent for you to process their personal data for a specific purpose.
(b) Contract: the processing is necessary for a contract you have with the individual, or because they have asked you to take specific steps before entering into a contract.
(c) Legal obligation: the processing is necessary for you to comply with the law (not including contractual obligations).
(d) Vital interests: the processing is necessary to protect someone’s life.
(e) Public task: the processing is necessary for you to perform a task in the public interest or for your official functions, and the task or function has a clear basis in law.
(f) Legitimate interests: the processing is necessary for your legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests. (This cannot apply if you are a public authority processing data to perform your official tasks.)
This section outlines our data retention practices and commitment to safeguarding your personal information in compliance with data protection laws and regulations in Scotland. We recognise the importance of managing and retaining your data responsibly, and this policy aims to provide clarity on how we handle data retention.
Principle of Data Minimisation:
We adhere to the principle that personal data should be kept only for as long as necessary to fulfill the purposes for which it was collected. We do not retain your information for longer than required, and we ensure that data is securely disposed of when it is no longer needed.
Retention Period Determination:
Our data retention periods are determined based on various factors, including the nature of the data, the purpose of processing, legal requirements, and industry standards. We regularly review and update these periods to ensure they remain appropriate and aligned with our business operations.
Legal and Regulatory Requirements:
We retain your personal data to fulfill legal obligations imposed on us by relevant laws and regulations in Scotland. These retention periods may vary depending on the specific requirements outlined in the law.
Each category of personal data is retained for a specific period based on the purpose for which it was collected. We define retention periods for different data types to ensure that data is not held for longer than necessary.
Data Security and Integrity:
Throughout the retention period, we implement security measures to protect your data from unauthorised access, loss, or alteration. Our commitment to data security extends to the retention phase to ensure your information remains confidential and intact.
You have the right to request information about the data we hold about you, including the retention periods for each data category. You also have the right to request the erasure of your data in accordance with applicable data protection laws.
We conduct regular reviews of our data retention practices to ensure they align with our commitment to data protection and any changes in laws or regulations. If our retention periods change, we will update this policy accordingly.
International transfers of personal information
The personal information we collect is stored and processed in the United Kingdom, Europe and the United States, or where we or our partners, affiliates and third-party providers maintain facilities. By providing us with your personal information, you consent to the disclosure to these overseas third parties.
We will ensure that any transfer of personal information from countries in the European Economic Area (EEA) to countries outside the EEA will be protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or the use of binding corporate rules or other legally accepted means.
Where we transfer personal information from a non-EEA country to another country, you acknowledge that third parties in other jurisdictions may not be subject to similar data protection laws to the ones in our jurisdiction. There are risks if any such third party engages in any act or practice that would contravene the data privacy laws in our jurisdiction and this might mean that you will not be able to seek redress under our jurisdiction’s privacy laws.
User Control/Granular Consent
Users should have the option to provide granular consent for different types of cookies. For example, they might consent to functional cookies but reject marketing cookies.
Users should have the ability to change their cookie preferences at any time. Websites should provide clear instructions on how to do this.
Updates to the Policy
Why Updates Matter:
Notification of Changes:
Review and Consent:
Our contact details:
My Content Pal Ltd, 61-63 High Street, Irvine, Scotland, KA12 0AL
Registered in Scotland
Company No. SC691448
VAT Number: GB 405169217