Prater Raines Ltd are a UK website design, development and hosting company, Limited Company Number 6110329.
We collect information about you in order to fulfil contractual obligations, such as domain name registrations, billing details for websites, membership information for our Foci2 service and contact information for agreeing contracts and keeping you up-to-date on service status and new developments. We also collect information about you in order to fulfil legal obligations, such as financial reporting. We further collect information by obtaining informed consent for marketing purposes.
Where we are fulfilling contractual obligations you have the right to object to processing. Where we are fulfilling legal obligations you have the right request that we erase information, to object to processing of your personal information and also to receive a copy of your information when you leave us. Where we have obtained consent for marketing, you can withdraw consent at any time. You can exercise all of these rights by contacting us directly.
Your rights under the Data Protection Act and GDPR are:
Should you feel that we have failed in our legal obligations to protect or process your data, you can lodge a complaint with the ICO at https://ico.org.uk/concerns/.
We collect information about you when you contact us via phone, email or our website when you place an order for our services, including domain name registration and hosting.
Although we store billing and invoice details, including the payment details of transactions, where a service from us is paid for with a credit or debit card, we do not store those credit and debit card details: they are passed to our payment processor Realex solely for the purposes of processing the payment.
The categories of personal data that we may collect are:
The special categories of personal data we collect are:
We collect information about you to process your order, provide the required services, send you invoices and to pass to third-party registrars (such as Nominet for .uk domain name registrations).
We may email or contact any existing customer about the services we provide to them, and with updates on other additional services we provide that may be of use or interest to them. Any customer can opt out of additional service contacts at any time through the use of unsubscribe links or by contacting us directly.
Prater Raines Ltd will only share the details of our customers as required to provide the customer with their requested services, to ensure the functioning of those services, or as directed to do by law. We do not share any of your information with other organisations for marketing purposes. Where we share information with recipients of your personal data and third parties that process your data on our behalf (sub-processors), we have signed appropriate data processing agreements.
The sub-processors that we use are:
When we store information electronically about customers it is on both physically and electronically secure servers with no access to non-Prater Raines staff. Personal data processed by Prater Raines Ltd is stored on our UK based servers in data centres in Maidstone and York. In some instances data is processed outside of the European Economic Area in countries or territories with an adequacy decision. Such adequacy decisions state that the relevant country or territory offers appropriate levels of protection to ensure the rights of data subjects.
Where data is processed in a country or territory without an adequacy decision, we have obtained model contract clauses or have confirmed that the sub-processor is covered by the Privacy Shield agreement. You can obtain copies of the relevant model contract clauses by contacting us directly.
The sub-processors we use that store data outside of the European Economic Area in countries without an adequacy decision are:
We retain data for a variety of purposes and thus the retention period varies depending on the nature of the data and the service we offer. Where we process data on behalf of data controllers, we follow their requirements. Where consent has been obtained, we will keep that consent under review and refresh it where necessary or where required to by data controllers for whom we process data.
The periods for which we retain personal data and or seek to refresh consent are:
You have a right at any time to stop us from contacting you for marketing purposes. If you no longer wish to be contacted for marketing purposes, please contact us and tell us so.
You have a right to request a copy of the information we hold about you. If you would like a copy of some or all of your personal information, please email or write to us.
We want to make sure that your personal information is accurate and up to date. You may ask us to correct or remove information from our files that you think is inaccurate.
We do not use third party services on our website that set cookies.
To make a subject access request or find out more about the information we hold about you, please contact our Data Protection Officer Gary Fuller: