Please read this notice carefully.
Resilico® understands that your privacy is important to you and that you care about how your personal data is used. This Privacy Notice (together with any other documents referred to in it) sets out how and why we process any personal data we collect from you, or that you provide to us. It also explains your rights and how to contact us.
If you are an end user of a Resilico® product or services account (such as Resilico® Pro or Resilico® Report) provided by your organisation, please see the Organisational User section.
Who we are
Resilient Planit Ltd (referred to as “Resilico®”) is a limited company registered in Northern Ireland with registered number NI683593. Our registered office and principal place of business is Unit 5, Saba Park, 14 Balloo Avenue, Bangor, BT19 7QT. Our registration number for Value Added Tax in the UK is 397269536. (“We, us, our”)
When we use your personal data, we are required to do so in accordance with the Data Protection Legislation. We are responsible as the ‘controller’ of your personal data for the purposes of the Data Protection Legislation. We will use your personal data in accordance with your engagement with us and your instructions, the Data Protection Legislation, other relevant legislation and our professional duty of confidentiality.
In the event that the EU General Data Protection Regulation applies to our activities, we will comply with that.
A quick guide to some legal terms
|Controller||The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data|
|Data Protection Legislation||The UK General Data Protection Regulation and the Data Protection Act 2018|
|Personal data||Defined by the Data Protection Legislation as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’|
|Processor||Any entity (or person) who processes personal data on behalf of a controller|
|Processing||Any action undertaken with someone’s personal data|
What does this notice cover?
This Privacy Notice applies to the following:
- People who visit our website
- People who use or enquire about our products and services
- Complaint management
- Third parties personal data collected from you
- People whose services we use
- Properties (and the owner or occupant) which have undergone flood resilience surveys and installation work
Visitors to our website
People who use or enquire about our products and services
When you use our services or contact us to enquire about our products and services, we will ask you to provide your personal data, such as name and contact details, in order that we can engage with you. If you do not provide your personal data, it may mean that we are not able to engage with you, or there may be a long delay before we can do so.
If you are an end user of a Resilico® product or services account provided by your organisation, please see the Organisational User section below.
When a person contacts us in relation to a complaint, we generally need to capture the details of the person making contact and the nature of the contact or complaint. Complaints normally contain the identity of the complainant and any other individuals involved in the complaint.
We will only use your personal information to:
- allow us to action your request
- allow us to properly investigate any complaint
- contact you in relation to any further information we require from you to action your initial request or complaint
- communicate with you, which may include responding to emails or calls from you
- review our training and processes in order to make improvements
Third Parties personal data collected from you
In the course of providing you with our services, such as Resilico® Connect, you may provide us with personal data of individuals who are not aware of our involvement or of our processing of their personal data. In these types of circumstances, we are not likely to have any direct contact with individuals whose personal data we are processing. Therefore, before you provide any such personal data to us, you must ensure that the relevant individual(s) has been made aware their personal data is being processed by us and you have notified them as to how they can access our Privacy Notice.
People whose services we use
Where we engage individuals or organisations to carry out services for us we may be required to process personal data of the service provider or its personnel in order to facilitate the provision of the service. We may also collect and retain information to enable us to evaluate that service.
Any such processing will be governed by contractual terms between us and the service provider, but the general provisions as to data security and retention periods etc. are as set out in this Privacy Notice.
Properties (and the owner or occupant) which have undergone flood resilience surveys and work
One of the key services we provide for the benefit of future flood resilience planning and climate change adaptation measures is the sharing of data relating to flood resilience measures installed at properties and other assets throughout the UK.
We will only share such data with agencies such as the Environment Agency, the Scottish Environment Protection Agency, the Northern Ireland Environment Agency and Natural Resources Wales. Any data shared is generally aggregated and anonymised, but where these agencies have an urgent or important need to identify measures at specific locations for the purposes of flood risk management, then specific property and property owner data is shared with them.
How we collect your personal data
The table below explains how we collect the personal data we are the controller of:
|Personal Data collected||How we collect it|
|Name, address, contact details (which may include, telephone numbers, email address)||Provided when using Resilico® Connect mobile Application
Provided in an enquiry or complaint
|Location data||Permitted by a Resilico® product user when setting up flood plans, alerts, completing maintenance updates or uploading photographic evidence|
|Name and address of third parties collected from a Resilico® Connect account holder||Provided by a Resilico® Connect user when setting up flood plans or alerts|
|Business information relating to a supplier’s personnel||Provided by the supplier at the time of engagement or during ongoing performance of the contract|
|Address data only||Collected when a Property Flood Resilience (PFR) professional or surveyor uses our Flood Compliance Platform services|
|Profile data including login details, history and usage||Collected when the products and services are used|
Where you are an individual that uses a Resilico® product or service provided by your organisation, such as Resilico Pro or Resilico Report, that organisation has the ability to control and administer your account and any subsequent access rights associated with it.
When you use a Resilico® product or service provided by your organisation, then the processing of your personal data is controlled by the contract in place between Resilico® and your organisation. In these circumstances, Resilico® is acting as processor and so you should direct any enquiries relating to the use of your personal data and your data protection rights to your organisation.
How and why we use your personal data
Under the Data Protection Legislation, we must always have a lawful basis for using personal data. When we process your personal data under legitimate interest, we consider your rights under data protection laws as well as any potential impact to you. We will never place our interests above yours.
The table below describes how we may use your personal data, and our lawful bases for doing so.
|What we use your personal data for||Our reasons for doing so and the legal basis|
|Providing and administrating Resilico® services, accounts and access to our services||For the performance of our contract with the end user, or to take steps at the request of the account holder prior to entering into an account|
|Managing payments for our services||For our legitimate interests in the better running of our business and for our compliance with financial regulations|
|Preventing unauthorised access and modifications to systems||For our legitimate interests or those of a third party, e.g. to prevent and detect criminal activity that could be damaging for us and for you. For compliance with our legal and regulatory obligations|
|Improving efficiency, training and quality control||For our legitimate interests or those of a third party, e.g. to make sure we are following our own internal procedures so we can continuously improve our service to you|
|Research and analysis||For our legitimate interests and those of third parties to improve the understanding and implementation of risk management practices for flooding and effects of climate change|
|Statutory returns||For our compliance with legal requirements|
|Exercise or defend legal rights||Where necessary, for the establishment, exercise or defence of legal claims. The legal basis for this processing is legitimate interests so that we can protect and assert our legal rights, your legal rights and those of others.|
|Relationship management||For the performance of our contract with an end user or account holder or our legitimate interests to be able to respond to any points raised with us|
|Marketing||For our legitimate interests or those of a third party, i.e. to promote our business to existing and former customers, and any third parties who have expressed an interest in our products and services|
|Improving and tailoring or products and services||For our legitimate interests or those of a third party, e.g. to make sure we can continuously improve our service to you|
We may use your personal data to send you updates (by email, telephone or post) about flooding or climate change developments that might be of interest to you and/or information about our services, including exclusive offers, promotions or new services or products.
We have a legitimate interest in processing your personal data for these purposes (see above ‘How and why we use your Personal Data’). This means we do not usually need your consent to send you these communications. However, where consent is needed, we will ask for this consent separately and clearly. You have the right to withdraw this consent at any time.
You can always opt-out of our marketing communications either by emailing us at email@example.com or by using the ‘unsubscribe’ option in any marketing email we send you.
Where and how do we do keep your personal data?
We only store your personal data in the UK. This means that it will be fully protected under the Data Protection Legislation.
We take appropriate measures to ensure that all personal information is kept secure, including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We require our staff and all third parties to maintain high standards of safety and protection of personal data, including contractual obligations under which they undertake the protections of all personal data.
We also have procedures in place to deal with any suspected personal information security breach. We will notify you and any applicable regulator of a suspected personal information security breach, where we are legally required to do so.
To deliver services or manage our relationship with you, it is sometimes necessary for us to share your personal data outside the UK, such as when our service providers are located outside the UK. Personal Data may also be held by other third parties as described below (see ‘Do we share your personal data?’).
How long is personal data kept for?
We retain personal data for as long as is reasonably necessary for the purposes for which it was provided or collected, and to meet legal, regulatory or financial accounting requirements. This means we will retain some personal data after a contractual relationship has come to an end. Where this is the case, we will always look to minimise the personal data retained.
The retention period for personal data can vary depending on its nature, any potential risk of harm caused by unauthorised use or disclosure, and if we have any legal, regulatory, financial or other requirements.
Please contact us if you have any questions relating to the retention of your personal data at firstname.lastname@example.org.
Do we share your personal data?
We may share your personal data with third parties for the following reasons:
- The use of service providers for the performance of any contract we have entered into with you. Where there is a need to transfer data to a supplier based outside of the UK, we will take all steps reasonably necessary to ensure that your personal data is treated securely and in accordance with this Privacy Notice, and only to a country which the UK’s supervisory authority (Information Commissioner’s Office) has determined provides an adequate level of protection, or where the recipient is bound by standard contractual clauses according to conditions provided by the Information Commissioner’s Office.
- The use of service providers who provide systems and communications services to us.
- The use of analytics and search engine providers to assist us in enhancing and improving our website and your user experience.
- Agencies such as the Environment Agency, the Scottish Environment Protection Agency, the Northern Ireland Environment Agency and Natural Resources Wales. Any data shared is generally aggregated and anonymised, but where these agencies have an urgent or important need to identify measures at specific locations for the purposes of flood risk management, then specific property and property owner data is shared with them.
We only allow our service providers to handle your personal data if we are satisfied they take appropriate measures to protect your personal data. We also impose contractual obligations on service providers to ensure your confidentiality is maintained.
You have the following rights under Data Protection Legislation:
- The right to be informed about our collection and use of your personal data. This Privacy Notice should tell you everything you need to know, but you can always contact us to find out more.
- The right to access the personal data we hold about you.
- The right to have your personal data rectified if any of your personal data held by us is inaccurate or incomplete.
- The right to ask us to delete any of your personal data that we hold.
- The right to restrict the processing of your personal data.
- The right to object to us using your personal data for a particular purpose or purposes.
- The right to withdraw consent. This means that, if we rely on your consent as the legal basis for using your personal data, you are free to withdraw that consent at any time.
For more information on each of the rights above, including the circumstances in which they apply, please contact us or see the Guidance from the UK Information Commissioner’s Office (ICO) www.ico.org.uk.
To contact us about anything to do with your personal data and data protection, please contact our Customer Services department at:
Email address: email@example.com
Postal Address: Unit 5, Saba Park, 14 Balloo Avenue, Bangor, BT19 7QT
Raising a concern
Please do contact us if you have any concerns. We are confident that we can resolve any concern you may raise with us about our use of your information. However, in the event that we are unable to satisfy your concerns, the Data Protection Legislation gives you the right to raise your concerns with the Information Commissioner who may be contacted at https://ico.org.uk/concerns or telephone: 0303 123 1113. The ICO address is: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
Changes to this Notice
We may update this Privacy Notice from time to time. This may be because of changes in the Data Protection Legislation, or we may change our business in some way that affects how we process personal data.
We recommend that you check this page regularly to keep up to date.
This Privacy Notice was last changed: November 2022
iPad Competition Terms and Conditions
Eligibility: This competition is open to residents of England, United Kingdom who are 18 years or over. Employees of Resilico and their families are excluded from entering.
Prize: The prize is an iPad with an approximate retail value of £500. No monetary alternative will be available for the prize.
Entry method: To enter the competition, participants must download the Resilico Connect app, start a free trial, and create a flood plan for their property using the app. The Resilico Connect app is available for download from the Apple App Store for iOS devices running iOS 14 or later and from the Google Play Store for Android devices running Android 6.0 API Level 23 or later. There is no cost to enter the competition. All entries must be submitted between 05/06/23 and 22/06/23, and only one entry per person is permitted.
Winner selection: The winner will be selected at random from all eligible entries received by 22/06/23.
Winner announcement: The winner will be notified by email by 29/06/23. The name and county of the winner will be made available upon request.
Restrictions: Only one entry per person is permitted. Entries received after 22/06/23 will not be considered.
Liability: Resilico is not responsible for any technical issues with the app or website that may prevent entry to the competition. Resilico is not liable for any loss or damage incurred as a result of participating in the competition.
Terms and conditions changes: Resilico reserves the right to amend these terms and conditions at any time.
Promoter: The promoter of the competition is Resilico, Unit 30, Arkwright Road, Astmoor Industrial Estate, Runcorn, Cheshire, WA7 1NU.