We want to ensure that you are satisfied with how Sixfold International Ltd is operating to ensure compliance with the GDPR.  This is our policy which we will operate for all your personal data.

What Are Our Roles

GDPR requires Sixfold to operate in two roles:

  1. As the “Controller” of the personal data you provide to us. We only collect basic personal data about you.  This may include your name, addresses, emails, and phone numbers.
  2. As a “Processor” undertaking the activities we are required to do on your behalf as a service provider and which relate to the data where you are the “Controller”.  This includes personal data relating your clients or staff, where Sixfold may store it, back it up or support its transport across networks.

What We Do and Don’t Do As “Processor”

In providing services such as data back-ups or data storage of the data you generate, we will gather and potentially store your data in the performance of our contractual services which may be required or maintained under a Sixfold contract.  This will include such personal data which we need to maintain contact between us for email and other services which you have opted in to receive from us.

Sixfold may host or support the computers, servers and networks which store and transport the data between devices, users and locations.

At all times we will keep devices we maintain and support at the highest reasonable level of available software and suitably configured to minimise access by unauthorised 3rd parties.

Sixfold has access to your data for the sole purpose of providing support for you and managing our relationship with you.  Sixfold does not access customer data for any purposes other than to provide service for you at your request.

Why We Require Your Specific Personal Data

We need to know your basic personal data to create your account, get in touch with you or to provide you a service or services within our any contract or agreement between us. We will not collect any personal data from you which we do not need in order to provide and oversee our agreed services to you.

How We Use Your Personal Data

All the personal data we process is processed by our staff in the United Kingdom and resides on our computers and UK based servers.

Sixfold uses a cloud-based database and hosted Microsoft Exchange servers to store some client information.  Here, the provider acts as a processor and makes no use of the data held other than to deliver database services on behalf of Sixfold.

No 3rd parties have access to your personal data unless the law allows them to do so.

We take all reasonable steps to ensure that your personal data is processed securely, including isolated servers, robust firewall and a system designed with security in mind.

How Long We Retain Your Personal Data

We are required under UK tax law to keep your basic personal data (name, address, contact details) for a minimum of 6 years after which time it may be destroyed.  Any information we use for marketing purposes (with your consent only) will be kept with us until you notify us that you no longer wish to receive this information.

What Are Your Rights

If at any point you believe the information we retain or process for you is incorrect or inaccurate you can request to see this information and have it corrected or deleted.  If you wish to raise a complaint on how we have handled your personal data, you can contact us to have the matter investigated on any of our advertised email or telephone numbers.

If you are not satisfied with our response, or believe we are processing your personal data outside our legal contracted right to do so, you can complain to the Information Commissioner’s Office at https://ico.org.uk/.  Please give us 30 days to respond to your complaint before doing so.

If you need any more information please contact us on 01227 860375