Privacy Policy

STAR GENIE LTD TRADING AS ADI NETWORK

At Star Genie Limited trading as ADI Network (referred to as ADI Network in this Privacy Notice), respecting your data privacy rights is a top priority. This notice explains why and how we collect personal data about you, how we may process such data, and what rights you have regarding your personal data. 

This notice is laid out such that the general provisions are at the top of this notice, and you can then select the data subject type that you wish to view the relevant information.

We collect and process your data based on the type of data subject that you are. Please click on the most relevant category(ies) of data subject for your situation and this will take you to the section that describes what data we collect and the reason and justification for processing for that data subject category.

Please read the General Information and then click on the Data Subject Type that you are, as set out below.

  1. PRIVACY NOTICE CONTENTS
  1. GENERAL INFORMATION

The information in this section is relevant to all categories of data subject.

Who controls your personal data?

ADI Network is responsible for your personal data. You can contact a representative by sending an email to the following address:

[email protected]

Your rights:

You have the following rights:

  1. The right to be informed

You have the right to be informed about how ADI Network processes your personal data. Typically, ADI Network communicates this information through privacy notices such as this one.

  1. The right of data access

You have a right to obtain a copy of the personal data we hold about you, subject to certain exceptions.

  1. The right of data rectification

You always have a right to ask for immediate correction of inaccurate or incomplete personal data which we hold about you.

  1. The right of data erasure

You have the right to request that personal data be erased when it is no longer needed, where applicable law obliges us to delete the data or the processing of it is unlawful. You may also ask us to erase personal data where you have withdrawn your consent or objected to the data processing. However, this is not a general right to data erasure – there are exceptions.

  1. The right to restrict data processing

You have the right to restrict the processing of your personal data in specific circumstances. Where that is the case, we may still store your information, but not use it further.

  1. The right to data portability

You have the right to receive your personal data in a structured, machine-readable format for your own purposes, or to request us to share it with a third party.

  1. The right to object to data processing

You have the right to object to our processing of your personal data based on the legitimate interests, where your data privacy rights outweigh our reasoning for legitimate interests.

  1. Rights in relation to automated decision making and profiling

You have the right not to be subjected to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects. Currently, ADI Network does not perform any automated decision making or profiling.

You may request to enforce your data privacy rights by emailing [email protected]

In certain circumstances, we may need to restrict the above rights to safeguard the public interest (e.g., the prevention or detection of crime) or our business interests (e.g., the maintenance of legal privilege).

Consent as a legal basis for processing

For some data processing, ADI Network uses consent as a legal basis. If you have consented to processing by ADI Network, please be aware that you have the right to withdraw this consent at any point. If you would like to withdraw consent for a particular type of data processing that ADI Network performs, please email the following address:[email protected]

Complaints to a Supervisory Authority

You have the right to lodge a complaint with a supervisory authority with regards to the way that ADI Network processes your personal data. ADI Network recommends lodging a complaint with the ‘Information Commissioner’s Office (ICO)’. This is the UK’s supervisory authority and is the one which ADI Network is registered with.  The ICO registration number of ADI Network is ZB185725.

How we share your data

We will not share your information with any third parties for the purposes of direct marketing.

In order to offer you Klarna’s payment methods, during checkout we may pass your personal data in the form of contact and order details to Klarna, in order for Klarna to assess whether you qualify for their payment methods and to tailor those payment methods for you. Your personal data transferred is processed in line with Klarna’s own privacy notice.

We use data processors who are third parties who provide elements of services for us. Categories of third parties include: cloud services providers, software providers, governing bodies and approved driving instructors. These third parties are based in the EU/EEA and are contracted with ADI Network as data processors. These contracts with the third-party data processors meet the contracting criteria required by the GDPR. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will hold it securely and retain it for the period we instruct.

In some circumstances we are legally obliged to share information. For example, under a court order. In any scenario, we will satisfy ourselves that we have a lawful basis on which to share the information and document our decision making and satisfy ourselves we have a legal basis on which to share the information.

How we protect your information

We implement appropriate technical and organisational measures to protect personal data that we hold from unauthorised disclosure, use, alteration, or destruction. Where appropriate, we use encryption and other technologies that assist in securing the data you provide. We also require our service providers to comply with strict data privacy requirements where they process your personal data.

How long we keep your personal data

We only keep your personal data for as long as necessary for the purposes described in this privacy notice, or until you notify us that you no longer wish us to process your data. After this time, we will securely delete your personal data, unless we are required to keep it to meet legal or regulatory obligations, or to resolve potential legal disputes. For further information please see our Retention Schedule located at the end of this document.

Contact and further information

If you have any questions about how we use your personal data or wish to make a complaint about how we handle it, you may contact ADI Network at [email protected]

  1. EMPLOYEES OR POTENTIAL EMPLOYEES

The types of information we collect and use

We collect and use personal data that concerns you in connection with your employment at ADI Network. We may collect the following categories of personal data:

  • Personal details and identification data such as name, address, telephone number, email address or any other contact details.
  • Personal data related to family and social circumstances such as gender, date of birth, marital and family status (including the name and contact details of the next of kin).
  • Employment related personal data such as: signature, employment status, national insurance numbers, insurance number, country of residence, nationality, photo, emergency contacts, passport information, work and residence permit, immigration status and travel visa information.
  • Qualifications such as qualifications and certifications including current and previous positions, education and training courses, resume/CV, records of education and work achievements, in some cases: contact details of referees and results of capability assessments and interview assessment/feedback.
  • Job information and work metrics such as position, title, employment contract, payroll ID, line manager, job band, performance history, employment status, leave of absence information, working time logging, training records, performance targets and development goals. In some cases, we may also record results of capability assessments, safety reports and incidents, and professional feedback.
  • Compensation, allowances, benefits and expense related information such as salary data, payroll data, pension plan number and contributions, non-salary benefits, bonus, compensation, share options, dependents, beneficiaries or health benefit nomination, bank statements, expense claims and receipts, bank account details, credit card data, phone expenses and insurance data.
  • Electronic identification data and information (where employee has access or is affected by such systems or applications) such as access logs, IT and internet usage, device identifiers (mobile device ID, PC ID etc.), registration and login credentials, IP address, tracking and analytics data, recordings (e.g. voice mail/call recordings), posts on corporate platforms (e.g. Yammer), password recovery data, information obtained via IT security tools.
  • Financial and other details such as account information, credit checks, payment details and transactions, investigation information and disciplinary history.
  • Other personal data (which may include special categories of information as mentioned below) namely where you or others (such as your colleagues) may register this data on or in our systems, programs and application such as business documents containing personal information (e.g. queries, questions, complaints, orders and related records; emails; reports; contracts; presentations, minutes; work products), photos, images and/or videos.
  • The below mentioned types of personal data are only collected and processed, if at all, in accordance with applicable local laws in your country of residence.
  • Special categories of personal data such as:
    • health and medical information, including disability status, special working conditions (such as use of a standing desk) and work related injury and illness information;
  • Data about criminal convictions and offences such as criminal background information and sanction list information to the extent required for the purposes of criminal background screening and Know Your Customer and Anti Money Laundering obligations.
  • To the extent necessary to fulfil our obligations, data obtained from publicly accessible sources or which are legitimately transmitted by other third parties (e.g. a credit agency) such as data in public professional social media (e.g. LinkedIn), background check data.

In case you would like to be provided with information about a specific personal data processing activity, you can request that by submitting a request at [email protected]

Why we use your personal data?

We may use your personal data as listed above for the following purposes:

  • human resources management including organisation and personal administration, working hours management, improving and maintaining effective staff administration, internal workforce analysis, reporting and planning;
  • staff transfer management from different affiliates and succession planning;
  • payroll, compensation and benefits management including providing staff benefits and maintaining salary, compensations including intellectual property, allowances, benefits, insurances, pensions and performance reviews;
  • talent management and acquisition including recruitment, assessing suitability and working capacity, background checks and verification of qualifications, obtaining and providing references;
  • learning and development management including certifications, training staff and performing assessments and employee satisfaction surveys;
  • processes related to joining and leaving including internal moves and terminations;
  • sickness and other leave and vacations management;
  • internal health and safety programs including health and safety and accident records or reporting and managing process quality;
  • travel and expenses management and organisation of business trips including monitoring of travellers to provide support during security or medical emergencies; providing travel security, health and safety training and on a voluntary basis assistance in giving security support during emergencies;
  • carrying out the obligations and exercising specific rights in the field of employment or a collective agreement;
  • internal and external communication of ADI Network’s organisation and representation of ADI Network including commercial register and assigning powers of attorney;
  • organizing ADI Network events and documentation of such events including managing and organizing internal non-marketing related campaigns, events and meetings;
  • managing ADI Network assets including pictures and videos depicting employees or other individuals available for download on the ADI Network intranet, ADI Network website, etc.;
  • finance and shared accounting services providing record to report, order to cash and purchase to pay services;
  • reorganisation, acquisition and sale of activities, business units and companies;
  • business reporting, statistics and analytics;
  • monitoring and auditing compliance of employees’ activities in the workplace with ADI Network’s corporate policies, contractual obligations and legal requirements including disciplinary actions;
  • carrying out audits, reviews and regulatory checks to meet obligations to regulators;
  • governance, risk and compliance, including compliance with laws, law enforcement, court and regulatory bodies’ requirements (such as for the process of verifying the identity of customers, called as Know Your Customer / Anti Money Laundering monitoring purposes), customs and global trade compliance, conflict of interest and security obligations) and prevention, detection, investigation and remediation of crime and fraud or prohibited activities or to otherwise protect legal rights and to establish, exercise or defend legal claims;
  • managing the customer relationship, processing customer orders and providing customer support, processing, evaluating and responding to requests and inquiries;
  • managing the suppliers, contractors, advisers and other professional experts including contact interaction, processing and fulfilling purchases and invoices, and contract lifecycle management;
  • making use of work performance and products and for references on documents, such as drawings, purchase orders, sales orders, invoices, reports;
  • access control system providing electronically controlled ingress and/or egress for authorised individuals to locations that have access restrictions and a registry of personnel on site in case of emergencies;
  • intrusion detection including 3rd party monitoring of duress, perimeter, internal security points and ancillary supervisory monitors for site maintenance/automated systems;
  • maintaining and protecting the security of products, facilities, services, systems, networks, computers, and information, preventing, and detecting security threats, fraud or other criminal or malicious activities, and ensuring business continuity; and
  • managing IT resources, including infrastructure management including data back-up, information systems’ support and service operations for application management, end user support, testing, maintenance, security (incident response, risk, vulnerability, breach response), master data and workplace including user accounts management, software licenses assignment, security and performance testing and business continuity.

We collect only the personal data from you that we need for the purposes described above. Certain personal data collected from you relates to your next of kin and emergency contacts. In these cases, you are requested to inform such persons about this Notice.

In case you are working at a third-party site (for example ADI Network customer location or facility), such third party may need to process your personal data for their purposes acting as a data controller. In these cases, you will receive or may request a separate privacy notice from the relevant data controller.

What happens if you do not provide us with the information we have requested?

Where it concerns processing operations related to your employment (as described above), ADI Network will not be able to adequately employ you without certain personal data and you may not be able to exercise your employee rights if you do not provide the personal data requested. Although we cannot mandate you to share your personal data with us, please note that this then may have consequences which could affect your employment in a negative manner, such as not being able to exercise your statutory rights or even to continue your employment. Whenever you are asked to provide us with any personal data related to you, we will indicate which personal data is required, and which personal data may be provided voluntarily.

The legal basis we rely on

For the use of your personal data for the purposes described above (in section 4), we rely on the following legal basis, as applicable:

  • We process your personal data for the fulfilment of obligations in your employment contract with us and similar collective employment agreements, or as part of pre-contractual measures to establish employment and related contracts;
  • In some cases, we rely on our legitimate interests to process your personal data insofar as this is not overridden by your own privacy interests. Such interests may include:
    • monitoring (for example through IT systems), investigating and ensuring compliance with legal, regulatory, standard and ADI Network internal requirements and policies;
    • prevention of fraud and criminal activity including investigations of such activity, misuse of ADI Network assets, products, and services, and as strictly necessary and proportionate for ensuring network and information security; and
    • transmitting personal data within the ADI Network group for internal administrative purposes as necessary, for example to provide centralised services.
  • You may obtain a copy of our assessment regarding our legitimate interest to process your personal data by submitting a request to [email protected]
  • In some cases, we process your personal data on the basis of statutory requirements, for example, on the basis of labour law, allowances, tax or reporting obligations, cooperation obligations with authorities or statutory retention periods in order to carry out our contractual responsibilities as an employer;
  • In exceptional circumstances we may ask your consent at the time of collecting the personal data, for example photos, communications materials, and events. If we ask you for consent in order to use your personal data for a particular purpose, we will remind you that you are free to withdraw your consent at any time and we will tell you how you can do this.
  1. CONTRACTORS OR POTENTIAL CONTRACTORS OR WORKERS WORKING UNDER A SERVICE CONTRACT

The types of information we collect and use

We collect and use personal data that concerns you in connection with your work assignment and the services you are providing under the work assignment/statement of work directly to ADI Network. We may collect the following categories of personal data:

  • Identification data and business contact information, you share with us such as first name, last name, email address, address, telephone number, mobile telephone number, gender, date of birth, ADI number.
  • Additional information you provide to us in the course of your work assignment such as data concerning the fulfilment of your work assignment, our contractual obligations and pre-contractual measures including correspondence data, offers, tenders, resume/CV, background check data, conditions, qualifications/certificates, contract and order data, invoices, payments, business partner history, records relating to queries/questions/complaints/orders, working time logging, and training and education records, car registration number, insurance data.
  • Expense related information such as bank statements, payment details, transactions, expense claims and receipts, bank account details, credit card data.
  • Electronic identification data and information collected by the communications systems, IT applications and website browser (where contractor has access or is affected by such systems or applications and in accordance with the applicable law) such as information technology usage (system access, IT and internet usage), device identifier (mobile device ID, PC ID), registration and login credentials, IP address, login data and log files, Analytics ID, digital alias/signature, time and URL, searches, website registration and cookie data recordings (e.g. voice mail/phone recordings, Skype recordings).
  • Other personal data namely where you or others (such as your colleagues) may register this data on or in our systems, programs and application such as business documents containing personal information (e.g. queries, questions, complaints, orders and related records, emails, reports, contracts, presentations, minutes, work products),
  • photos, images and/or videos.

The below mentioned types of personal data are only collected and processed, if at all, in accordance with applicable local laws in your country of residence and where relevant depending on your work assignment. 

  • Special categories of personal data such as data for travel emergency support (blood typemedical history, allergies).
  • Data about criminal convictions and offences such as criminal background information for the purposes of criminal background screening.
  • To the extent necessary to fulfil our obligations, data obtained from publicly accessible sources or which are legitimately transmitted by other third parties (e.g. a credit agency) such as data transferred to ADI Network by your employer or the company through which you are assigned to ADI Network, commercial register data, creditworthiness data.

In case you would like to be provided with information about a specific personal data processing activity, you can request that by submitting a request at [email protected]

Why we use your personal data?

We may use your personal data as described above for the following purposes:

  • human resources management as relevant to your work assignment and the services you are providing under the work assignment/statement of work directly to ADI Network including organisation and personal administration, working hours management, improving and maintaining effective staff administration, internal workforce analysis, reporting and planning;
  • supplier and service provider management throughout the procurement, logistics and supply chain including contact interaction including tendering, engagement, processing orders, process and fulfilment of purchases, administration and management of suppliers, vendors, contractors, advisers and other professional experts including contact interaction, processing and fulfilling purchases and invoices, and contract lifecycle management;
  • staff transfer management from different affiliates and succession planning;
  • training contractors;
  • internal health and safety programs;
  • travel and expenses management and organisation of business trips including monitoring of travelers to provide support during security or medical emergencies, providing travel security, health and safety training and on a voluntary basis assistance in giving security support during emergencies, insurance management;
  • finance and shared accounting services providing record to report, order to cash and purchase to pay services;
  • making use of work performance and products and for references on documents, such as drawings, purchase orders, sales orders, invoices, reports;
  • reorganisation, acquisition and sale of activities, business units and companies;
  • monitoring and auditing compliance with ADI Network’s corporate policies, contractual obligations and legal requirements;
  • carrying out audits, reviews and regulatory checks to meet obligations to regulators;
  • maintaining and protecting the security of products, facilities, services, systems, networks, computers and information, preventing and detecting security threats, fraud or other criminal or malicious activities, and ensuring business continuity; and
  • managing IT resources, including infrastructure management including data back-up, information systems’ support and service operations for application management, end user support, testing, maintenance, security (incident response, risk, vulnerability, breach response), master data and workplace including user accounts management, software licenses assignment, security and performance testing and business continuity.

We collect only the personal data from you that we need for the purposes described above. For statistical purposes, improvement of our services and testing of our IT systems we only use anonymised data. This means that this data can no longer (in)directly identify you or single you out as an individual.

What happens if you do not provide us with the information we had asked you for or if you ask us to stop processing your information?

Where it concerns processing operations related to your work assignment (as described above), ADI Network will not be able to adequately establish, conduct or terminate a business relationship with you, your employer or the company through which you are assigned to ADI Network and generally perform the purposes described above without certain personal data. Although we cannot obligate you to share your personal data with us, please note that this then may have consequences which could affect your work assignment in a negative manner, such as not being able to take requested pre-contractual measures to enter into a contract with you, your employer or the company through which you are assigned to ADI Network or to establish and continue your work assignment.

The legal basis we rely on

We use your personal data for the purposes described in this notice based on one of the following legal bases, as applicable:

  • We may process your personal data for the fulfilment of contractual obligations resulting from your work assignment, or as part of pre-contractual measures we take;
  • In some cases, we rely on our legitimate interests to process your personal data insofar as this is not overridden by your own privacy interests. Such interests may include:
    • conduct, management, development and furtherance of our business in the broadest sense possible including supply of products and services, performance of agreements and order management with suppliers, process and fulfilment of purchases, process quality management and improvement of products or services, analytics and market intelligence, reduction of default risks in our procurement processes and reorganisation, acquisition and sale of activities, business divisions and companies;
    • monitor, investigate and ensure compliance with legal, regulatory, standard and ADI Network internal requirements and policies;
    • prevent fraud and criminal activity including investigations of such activity, misuse of ADI Network assets, products and services, and as strictly necessary and proportionate for ensuring network and information security; and
    • transmitting personal data within the ADI Network group for internal administrative purposes as necessary for example to provide centralised services.

You may obtain a copy of our assessment of why we may process your personal data for these interests by submitting a request at [email protected]

  • In some cases, we process your personal data on the basis of legal obligations and statutory requirements, for example, on the basis of tax or reporting obligations, cooperation obligations with authorities, statutory retention periods or the disclosure of personal data within the scope of official or judicial measures may be required for the purposes of taking evidence, prosecution or enforcement of civil law claims.

With regard to special categories of personal data we will only process such data in accordance with applicable law and:

  • We will ask your explicit consent for specific activities in accordance with applicable law; or
  • where necessary for establishment, exercise and defence of legal claims.

With regard to personal data concerning criminal convictions and offences, we will only process such data where such processing is permitted by applicable (local) law.

  1. SUPPLIERS OR POTENTIAL SUPPLIERS OR INSTRUCTORS OR POTENTIAL INSTRUCTORS

The personal data we collect about you and how we use it

We collect and use personal data that concerns you in connection with the agreements with our suppliers. We may collect the following categories of personal data:

  • Identification data and business contact information, you share with us such as first name, last name, job/position/title, business email address, business address, telephone number, ADI number, mobile telephone number, private telephone number.
  • Additional information you provide to us in the course of our business relations such as data concerning the fulfilment of our contractual obligations and pre-contractual measures including correspondence data, offers, tenders, resume/CV, conditions, contract and order data, invoices, payments, business partner history, records relating to queries/questions/complaints/orders.
  • Electronic identification data and information collected by the communications systems, IT applications and website browser (where supplier has access or is affected by such systems or applications and in accordance with the applicable law) such as information technology usage (system access, IT and internet usage), device identifier (mobile device ID, PC ID), registration and login credentials, IP address, login data and log files, Analytics ID, time and URL, searches, website registration and cookie data, sound recordings (e.g. voice mail/phone recordings, Skype recordings).

The below mentioned types of personal data are only collected and processed, if at all, in accordance with applicable local laws in your country of residence and where relevant depending on the agreements with our suppliers.

  • Data about criminal convictions and offences such as criminal background information and sanction list information to the extent required for the purposes of criminal background screening, due diligence and Anti Money Laundering obligations
  • To the extent necessary to fulfil our obligations, data obtained from publicly accessible sources or which are legitimately transmitted by other third parties (e.g. a credit agency) such as commercial register data, creditworthiness data.

What we use your personal data for

We may use your personal data as described above for the following purposes:

  • supplier and service provider management throughout the supply chain including contact interaction including tendering, engagement, processing orders, process and fulfilment of purchases, administration and management of suppliers, vendors, contractors, advisers and other professional experts;
  • paying debts, supplier invoice and payment management, purchasing of direct and indirect services;
  • reporting and analytics including market intelligence and development and improvement of services or products through assessment and analysis of the information;
  • management of process quality;
  • references on documents, such as tenders, purchase orders, invoices, reports;
  • contract lifecycle management;
  • payment collection and insolvency processes;
  • training suppliers;
  • finance and shared accounting services, providing record to report and purchase to pay services;
  • reorganisation, acquisition and sale of activities, business units and companies;
  • monitoring and auditing compliance with ADI Network’s corporate policies, contractual obligations and legal requirements;
  • carrying out audits, reviews and regulatory checks to meet obligations to regulators;
  • governance, risk and compliance, including due diligence and anti-money laundering obligations, customs and global trade compliance and sanctioned party list screening, security, including prevention, detection of crime and fraud;
  • maintain and protect the security of products, facilities, services, systems, networks, computers and information, preventing and detecting security threats, and fraud or other criminal or malicious activities; and
  • manage IT resources, including infrastructure management including data back-up, information systems’ support and service operations for application management, end user support, testing, maintenance, security (incident response, risk, vulnerability, breach response), user accounts management, software licenses assignment, security and performance testing and business continuity.

We collect only the personal data from you that we need for the purposes described above. For statistical purposes, improvement of our services and testing of our IT systems we use as much as reasonably possible anonymised data. This means that these data can no longer (in)directly identify you or single you out as an individual.

What happens if you do not provide us with the information we had asked you for or if you ask us to stop processing your information?

Where it concerns processing operations related to the agreements with our suppliers (as described above), ADI Network will not be able to adequately establish, conduct or terminate a business relationship with you or your company and generally perform the purposes described above without certain personal data. Although we cannot obligate you to share your personal data with us, please note that this then may have consequences which could affect the business relationship in a negative manner, such as not being able to take requested pre-contractual measures to enter into a contract with you or to establish and continue the business relationship you have asked for.

The legal basis on which we use your personal data

We use your personal data for the purposes described in this notice based on one of the following legal bases, as applicable:

We may process your personal data for the fulfilment of contractual obligations resulting from contracts with you or your company, or as part of pre-contractual measures we take;

In some cases, we rely on our legitimate interests to process your personal data insofar as this is not overridden by your own privacy interests. Such interests may include:

  • conduct, management, development and furtherance of our business in the broadest sense possible including supply of products and services, performance of agreements and order management with suppliers, process and fulfilment of purchases, process quality management and improvement of products or services, analytics and market intelligence, reduction of default risks in our procurement processes and reorganisation, acquisition and sale of activities, business divisions and companies;
  • monitor, investigate and ensure compliance with legal, regulatory, standard and ADI Network internal requirements and policies;
  • prevent fraud and criminal activity including investigations of such activity, misuse of ADI Network assets, products and services, and as strictly necessary and proportionate for ensuring network and information security; and
  • transmitting personal data within the ADI Network group for internal administrative purposes as necessary for example to provide centralised services.

In some cases, we process your personal data on the basis of legal obligations and statutory requirements, for example, on the basis of tax or reporting obligations, cooperation obligations with authorities, statutory retention periods or the disclosure of personal data within the scope of official or judicial measures may be required for the purposes of taking evidence, prosecution or enforcement of civil law claims.

Regarding personal data concerning criminal convictions and offences, we will only process such data where such processing is permitted by applicable (local) law.

  1. CUSTOMERS/CLIENTS OR POTENTIAL CUSTOMERS/CLIENTS

The personal data we collect about you and how we use it

We collect the following categories of personal data:

  • The contact information you share with us: name, title, email address, home address, pick up address, telephone number, mobile telephone number
  • Information for arranging driving lessons and driving tests: date of birth, provisional licence number, theory test booking number, practical test booking number, medical conditions, home address, and pick up address. 
  • Financial information for processing payments and refunds: debit or credit card details, and billing address 
  • Additional information you provide to us in the course of our business relations, such as:interests in ADI Network services or products, marketing preferences, registration information provided at events, fairs, contract or order data, invoices, payments, business partner history, etc.  
  • Information your browser makes available when you visit the ADI Network website:IP address, the source of your site visit, time spent on the website or a particular page, links clicked, comments shared, browser type, date and time of visit, etc. 

What we use your personal data for

We use your personal data to: 

  • process and fulfil orders and keep you informed about the status of your or your company’s order;
  • provide and administer our products and services;
  • provide customer support and process, evaluate and respond to requests and inquiries;
  • conduct and facilitate customer satisfaction surveys;
  • contact ADIs and DVSA in order to arrange and amend courses and tests
  • conduct marketing and sales activities (including generating leads, pursuing marketing prospects, performing market research, determining and managing the effectiveness of our advertising and marketing campaigns and managing our brand);
  • send you marketing communications (such as alerts, promotional materials, newsletters, etc.);
  • perform data analytics (such as market research, trend analysis, financial analysis, and customer segmentation).

We only collect the personal data from you that we need for the above purposes. We will share only the minimum necessary details using secure communication methods. Which may include phone, email, API [system-to-system] and modern text-based communications.

We may also anonymise your personal data, so it no longer identifies you and use it for various purposes, including the improvement of our services and testing our IT systems.

If you make use of a promotional code or offer that you have received from another company via one of their marketing campaigns, ADI Network may notify that company of the status of your order in connection with the promotional offer. This is for the purpose of managing the content and delivery of any subsequent marketing communications you may receive within the campaign or future campaigns.

In order for ADI Network to provide gift cards and other similar promotional benefits, it may be necessary to share your personal data (such as your name, phone number and email address) with a third-party company that provides these services.

What happens if you do not provide us with the information we had asked you for, or if you ask us to stop processing your information?

Certain personal data is necessary to establish, conduct or terminate a business relationship with you. We need you to provide us with the personal data required for the fulfilment of contractual obligations or which we are legally obliged to collect. Without such personal data, we will not be able to establish, execute or terminate a contract with you. Also, we will be unable to take requested pre-contractual measures to enter a contract with you or to establish and continue the business relationship you have asked for.

The legal basis on which we use your personal data

We use your personal data for the purposes described in this notice based on one of the following legal bases, as applicable:

  • We may process your personal data for the fulfilment of contractual obligations resulting from contracts with you or your company, or as part of pre-contractual measures we have been asked to take;
  • We may process your personal data on the basis of statutory requirements, for example, on the basis of tax or reporting obligations, cooperation obligations with authorities or statutory retention periods;
  • We will ask your consent for the activities described in this privacy notice when required by applicable law, for example when we process your data for marketing purposes where we don’t have an existing business relationship with you or your company; or
  • We will rely on our legitimate interests to process your personal data within the scope of the business relationship with you or your company. Our legitimate interests to collect and use the personal data for this purpose are management and furtherance of our business.
    • prevention of fraud and criminal activity including investigations of such activity, misuse of ADI Network assets, products, and services, and as strictly necessary and proportionate for ensuring network and information security; and
    • monitor, investigate and ensure compliance with legal, regulatory, standard and ADI Network internal requirements and policies;
    • transmitting personal data within the ADI Network group for internal administrative purposes as necessary for example to provide centralised services.
    • training our employees, carrying out quality assurance audits and identifying opportunities for business improvement
  1. OTHER DATA SUBJECT TYPES

Unsolicited Personal Information

If you send ADI Network unsolicited personal information, for example a CV, ADI Network reserves the right to immediately delete that information without informing you or to decide which category of data subject that you appear to be and manage your personal data within the remit of that category as described elsewhere in this Privacy Notice.

Users of our website that do not fall under the specifically stated Data Subject Types

The personal data we collect about you and how we get it

We collect the following categories of personal data:

  • The business contact information you share with us:name, title, job title, email address, business address, telephone number, mobile telephone number, etc.
  • Information your browser makes available when you visit the ADI Network website:IP address, the source of your site visit, time spent on the website or a particular page, links clicked, comments shared, browser type, date and time of visit, etc.

What we use your personal data for

  • We use your personal data to:
  • respond to your specific request that you make, for example request a demonstration, whitepapers, newsletters, or other information.
  • provide customer support and process, evaluate and respond to requests and inquiries;
  • conduct and facilitate customer satisfaction surveys;
  • conduct marketing and sales activities (including generating leads, pursuing marketing prospects, performing market research, determining and managing the effectiveness of our advertising and marketing campaigns and managing our brand);
  • send you marketing communications (such as alerts, promotional materials, newsletters, etc.);
  • perform data analytics (such as market research, trend analysis, financial analysis, and customer segmentation).
  • We only collect the personal data from you that we need for the above purposes. We may also anonymise your personal data, so it no longer identifies you and use it for various purposes, including the improvement of our services and testing our IT systems.

The legal basis on which we use your personal data

We use your personal data for the purposes described in this notice based on one of the following legal bases, as applicable:

  • Legitimate interest as by using our website it is understood that there is potential for you to be a potential customer, contractor, employee, or supplier.

ADI Network Apps

The types of information we collect and use

We collect and use the personal information you share with us when registering to use our ADI Network app to manage your private students, and additional personal information required when registering to accept and manage ADI Network students. This applies to all versions of the ADI Network app (Android, iOS, Web).

We collect the following information from users:

  • Identification data and business contact information, you share with us such as first name, last name, title, email address, address, postcode, mobile telephone number, gender, date of birth, ADI number.
  • Additional information if managing ADI Network students: car registration number, insurance number, insurance documents, ADI badge.

What we use your data for

We use the above information as described for the following purposes: ensuring app functionality; account management; fraud prevention, security and compliance; advertising and marketing; and analytics.

Personal information is not shared with any third-party companies or organisations except when necessary to provide you with the agreed services or when you have provided explicit consent to do so. If using the ADI Network app to manage ADI Network students, we will share your name and phone number with the students assigned to you.

Information received from Google APIs

You have the ability to integrate your Google Calendar with your ADI Network calendar.

Information received from Google APIs will only be for the purpose of managing your courses and ensuring that your lessons and availability automatically synchronise between ADI Network app and your personal Google Calendar.

Use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

We will not transfer any information received from Google APIs to any other app.

How to remove your personal data

To request the removal of your personal information, please email [email protected] 

  

Personal data of private students

If you use ADI Network services or software (e.g. ADI Network app) to manage your private students’ information, you are the Data Controller of these students and ADI Network is the Data Processor. We will not access or use the data except as necessary to provide you with the requested services.

Private student personal data may include such things as: name; title; email address; home address; pick up address; telephone number; mobile telephone number; date of birth; provisional licence number; theory test booking number; and practical test booking number.

As the Data Controller, you are responsible for ensuring that private student data is retained and deleted in accordance with legal requirements and your own retention policies.

As the Data Controller, you will be responsible for processing Data Subject Requests. ADI Network will provide reasonable assistance with processing Data Subject Requests to the extent of our legal obligation as the Data Processor. If we receive a Data Subject Request regarding one of your private students, we will instruct them to contact you directly to submit their Data Subject Request.

  1. RETENTION PERIODS FOR ALL DATA SUBJECTS

DATA RETENTION SCHEDULE

PROCESS

CATEGORIES

MAY INCLUDE

RETENTION TRIGGER

PERIOD

Processing Transaction/Booking including contact forms

Identity

Name
 Surname
 Title
 Date of birth
 Provisional Licence Number

Last Action

6 years

Contact

Address(es)
 Phone
 Email

Last Action

6 years

Financial

Debit/Credit card details

Last Action

6 years

Payment

Financial

Debit/Credit card details

Last Action

6 years

Contact

Address(es)
 Phone
 Email

Last Action

6 years

DVSA Course Booking

Identity

Name
 Surname
 Title
 Date of birth
 Provisional Licence Number
 Theory Test Booking Number
 Practical Test Booking Number

Last Action

6 years

Marketing

Identity

Name
 Surname
 Title
 Date of birth
 Screen Name

Last Action

2 years

Contact

Email

Last Action

2 years

Recruitment Interviewing

Identity

Name
 Surname
 Title

Last Action OR End of Employment

1 year

Contact

Phone
 Email

Last Action OR End of Employment

1 year

Document

CV

Last Action OR End of Employment

1 year

Recruitment Onboarding

Identity

Name
 Surname
 Title
 Date of birth
 Gender
 Marital Status

End of Employment

6 years

Contact

Address(es)
 Phone
 Email
 Emergency Contact

End of Employment

6 years

Documents

Passport (or Right to Work equivalent)
 P45

End of Employment

6 years

Financial

Bank Account details

End of Employment

6 years

HR and Staffing

Identity

Name
 Surname
 Title
 Date of birth
 Gender

Marital Status

Job Title

Car Registration Number

National Insurance Number

End of Employment

6 years

Contact

Address(es)
 Phone
 Email
 Emergency Contact

End of Employment

6 years

Documents

Passport (or Right to Work equivalent)
 P45
 Medical Documents
Employment Contract

End of Employment

6 years

Financial

Bank Account details
 Salary and Pension details

End of Employment

6 years

Job Information and Work Metric

 

Position
Job Title
Line Manager
Job Band
Performance History
Employment Status

Working Time Log
Leaves of Absence
Training Records
Performance Targets
Development Goals

End of Employment

6 years

Suppliers and ADIs

Identity

Name
Surname
Title

Gender
Date of Birth

Car Registration Number

ADI Number

Last Action OR End of Collaboration

6 years

Contact

Address(es)
 Phone
 Email

Last Action OR End of Collaboration

6 years

Documents

ADI Badge

Last Action OR End of Collaboration

6 years

Financial

Bank Account details

Last Action OR End of Collaboration

6 years

Website Cookies

Identity

Please see our Cookie Statement

Please see our Cookie Statement

 

Data Subject Request (DSR)

Identity

Name
 Surname
 Title

Last Action

1 year

Contact

Phone
 Email
 Address

Last Action

1 year

Call Recordings

 

 

Call Recording Audio

Call End Date

1 year

Emails

 

Transactional Emails

Date Sent

3 months