When we refer to `we`, `our`, `us` or `Global Marine Group`, we are referring to Global Marine Systems Ltd , Global Marine, CWind and Global Offshore or any of them, as the context indicates.
This policy may change from time to time and, if it does, the up-to-date version will always be available on our website and becomes effective immediately.
This Policy applies to personal information acquired through various media, this can include, but not be limited to;
When you visit the company’s websites, (www.globalmarine.group / www.globalmarine.co.uk) / www.cwind.global / www.globaloffshore.co.uk) to view any pages or read product information, you do so without telling us who you are and without revealing any personal information. While we do not collect identifying information about visitors to our websites, we do use standard software/cookies to collect information for the strict purpose of tracking activity on our websites. This allows us to better understand how many people use our websites and which pages and features are most popular. Please refer to our Cookies Policy section (below) for further details.
Pages of the company website may, from time to time, contain links to and from other websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that the Company does not accept any responsibility or liability for these policies or use of the third parties website.
Your personal data will only be processed for the purposes set out below and in accordance with Data Protection Law. The Company will not process your personal data in any manner incompatible with these purposes unless we are required to do so by law.
The Company may hold and process your personal data for the following purposes:
In addition to the above special category personal information may also need to be processed where the Company needs to:
In exceptional circumstances, we may process this data without your explicit consent, we will notify you of these at that time.
GDPR rules for special category data do not apply to information about criminal allegations, proceedings or convictions. Instead, there are separate safeguards for personal data relating to criminal convictions and offences, or related security measures. The processing of criminal data by the Company will be done so in accordance with the specific conditions set out in Schedule 1 of the Data Protection Act 2018, and any additional safeguards as set out by the act will be put in place before we do so.
We rely on one or more of the following legal basis for processing your personal data:
By consenting you are giving the Company permission to process your personal information specifically for the purposes identified. Where we are asking you for sensitive personal information we will always tell you why and how the information will be used. When consent is required for Company to process this sensitive information, your consent will be explicitly requested by the Company.
If you are under 18, please ensure that you have obtained your parental / guardian’s permission in advance whenever you provide personal information to us.
You may withdraw consent at any time by writing to Global Marine Group, Data Protection Officer at:
Global Marine Group,
1 Winsford Way,
CM2 5PD, England.
or via email: email@example.com.
Please note: if you do withdraw your consent, we may still be able to process some of your personal information on other grounds, we will notify you of these at that time.
Third Parties please note: Where you provide personal information relating to your personnel or other third parties (e.g. if you are a recruitment agent), the Company considers that you have received and warrant the consent from the individual to do so, and that the information is accurate and up-to-date. It remains your responsibility to inform us if the wishes of the third party changes or, if any of their personal information changes.
For the purposes set out above, the Company may transfer personal data to third parties including some that operate outside of the EU. These include our clients, subsidiaries, sub-contractors, vessels, services providers or suppliers including our website operator, professional advisors, insurers and regulatory bodies. This will be for one of the following reasons:
We will not rent or sell personal data to any other organisation or individual.
Appropriate technical and organisational measures have been put in place to ensure the continued security of your personal data. Through Data Protection Impact Assessments (DPIAs) the Company determines appropriate and proportional risk treatments. Encryption has been deploy in certain instances, and the company has appropriate policies for Information Security handling, Data Security, Data Restoration and Data Back Up which are periodically reviewed.
The Company has put in place certain technical measures to ensure the security of the information collected and its correct use. These are appropriate to the nature of the information and to prevent unauthorised access. All incoming emails are scanned using virus-checking software. The software will also block unsolicited marketing email (spam) and emails which have potentially inappropriate attachments. All personal data you register on our website will be located behind a firewall. Once we have received your information, we follow strict security procedures as to how your personal data is stored and who sees it, to help stop any unauthorised person getting hold of it. Access to your personal data will only be given to those who strictly need such access.
Where personal data is shared with third parties within the GMG organisation but where the receiver is based outside of the European Economic Area (EEA) eg. to one of our vessels, the Company will ensure full and continued compliance with Data Protection Law.
Under the governance of “Restricted Transfer” and with appropriate safeguards in place, your data may be transferred to third parties outside of the organisation which are also outside of the EEA.
Instances where the Company requires to take extraordinary action/s requiring disclosure or use of your personal data and where it has been determined that lawful use or consent has not otherwise been obtained, the Company will seek your consent to do so as well as provide you with the related Privacy Information.
We will keep your personal data stored on our systems for only as long as is necessary to achieve our business objectives, albeit we may keep your data for longer than this if we cannot delete it for legal, regulatory or technical reasons. We may also keep it for statistical purposes.
The third parties we engage to provide services on our behalf will keep your personal data stored on their systems for as long as is necessary to provide the services to you or for such purposes that the personal data was disclosed for. The company has agreements in place regarding third-party retention and destruction of personal information.
The Company processes and procedures comply with the Data Protection Regulation in respect of storage limitation, whereby the Company.
GDPR provides the following rights to individuals, which are :
When you make a request/exercise your rights under GDPR we describe this as a Data Subject Access Request or DSAR. Before we action your DSAR we are required to confirm your identity, please be advised, if we have doubts about your identity when responding to your DSAR, we will ask for more identification data (ID). We will only request information that is necessary to confirm who you are. We will let you know as soon as possible if we need more information before responding to your request. The period (30 days) for responding to your request will begin once we receive this additional ID information and we are confident that you are who you say you are.
GDPR allows for you to make a DSAR via a third party. Often, this will be a solicitor acting on your behalf. In these cases, the company will take steps to be satisfied that the third party making the request is entitled to act on your behalf, noting that it is the third party’s responsibility to provide evidence of such entitlement.
Your “Rights” in brief :
You have the right to be informed about the collection and use of your personal data. This is a key transparency requirement under the GDPR. Whereby the company shall:
There are a few circumstances when you do not need to provide people with privacy information, such as if an individual already has the information or if it would involve a disproportionate effort to provide it to you.
You have the right to request a copy of the information that we hold about you. Your request will be processed and the information to which you are entitled will be collated and provided to you no later than one month (except in extenuating circumstances) from when we receive your request, subject to the requirements and exemptions of Data Protection Law. If such extenuating circumstances mean we are unable to comply with your request within one month, we will tell you as soon as possible about this delay.
You have a right to correct data that we hold about you that is inaccurate or incomplete. Where your personal data is inaccurate or where you would like us to complete any incomplete information, you can provide us with a statement that sets out the details of your request for rectification. For certain systems, you will be asked to sign a declaration of accuracy.
In certain circumstances, you can ask for the data we hold about you to be erased from our records. You can request that the Company deletes your personal data where it does not have grounds to continue processing your personal data. The Company will be unable to comply with your request in certain circumstances including, for example, if the Company has a legal obligation to continue processing the data, we will advise you in this instance.
You have the right to the restriction of processing where certain conditions apply. You have the right to request restriction of processing by the company in the following circumstances:
The right to data portability, gives you the right to receive personal data previously provided to the company (as the data controller), in a structured, commonly used and machine-readable format. It also gives you the right to request that a company transmits this data directly to another controller. Your right to data portability only applies when:
You can restrict the Company’s processing of your personal data where:
GDPR has additional rules to protect you if the company chooses to carry out solely automated decision-making processes that have legal or similarly significant effects on you. The company can only carry out this type of decision-making where the decision is:
In the event that the company undertakes automated processing, it will advise you. It will also introduce simple ways for you request human intervention or challenge a decision and will carry out regular checks to make sure that our systems are working as intended.
To exercise your rights in the first instance please write to the company’s Data Protection Officer (DPO) and send to:
Global Marine Group (FAO: Data Protection Officer),
1 Winsford Way,
CM2 5PD, England.
or via email: firstname.lastname@example.org.
We use social plug-ins from facebook.com, operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. You can recognise these plug-ins by their Facebook logo. Here is an example of how these plug-ins work:
If you click on the Facebook “Share” button, the relevant information is transmitted directly from your browser to Facebook and stored there. Facebook will make the shared content public on your Facebook profile. If you are logged in on Facebook, the plug-in can assign the visit of our website directly to your Facebook profile. Facebook may collect information about your website behaviour and that you have accessed our website.
We use plug-ins which are provided by LinkedIn Corporation (LinkedIn), 2029 Stierlin Court, Mountain View, CA 94043, USA. These plug-ins can be identified by the LinkedIn logo and the LinkedIn “Share” button. If you access our website using this plug-in, your browser sets up a direct connection to the LinkedIn servers. LinkedIn receives information that you (your IP-address) has accessed our website. If you click on the LinkedIn “Share” button while you are logged in on your LinkedIn account, you can link certain content on your LinkedIn-Profile which enables LinkedIn to allocate the visit to our website to your LinkedIn account. We do not know the content of the data transferred to LinkedIn or how LinkedIn uses such data.
There is a technology called “Cookies” which can be used to provide you with tailored information when visiting the Company website. A Cookie is an element of data the website will send to your browser, which will then be stored on your computer. This element of data is a piece of text, not a program. The website can only access the information from a Cookie sent by specific website and it cannot access other Cookies sent by other websites or the information contained there. Additionally, we cannot learn your email address or any other information about you through the use of a Cookie.
You will be given the option to accept or decline non-essential cookies when you first visit our website and every 30 days thereafter. You can manage Cookies at any time during a 30 day period by following the relevant instructions below depending on the browser you are using:
Our website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “Cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the Cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.
Cookies, whether session or persistent, are also described as first-party or third-party cookies. Cookies relating to content coming from the page’s primary server are first party Cookies and where the web page’s content does not come from the page’s primary server they are referred to as third-party cookies. Listed here are all the Cookies that we use to manage website delivery to your browser:
A Session Cookie enhances the user experience when using the website. These enable you to carry out some essential functions on our site, such as maintaining log in details for the session or transaction. They also help by minimising the need to transfer information across the net. They are not stored on your computer and they expire when you terminate your browser session.
A Google Analytics cookies defines user sessions as well as to provide a number of key features in the Google Analytics reports. Google Analytics sets or updates cookies only to collect data required for the reports and cookies set by Google Analytics for this website and only send data to our servers, effectively making these cookies the personal property of our website domain. The data cannot be altered or retrieved by any service on any other domain. All have a medium level of privacy tracking.
__utma: This Cookie is used to identify unique visitors to our sites. The results are sent to our Google Analytics account so that we may see how many unique visitors come to this site based over a period of time. This is a persistent cookie and expires in 2 years.
__utmb: This Cookie is used by Google Analytics to determine the visitor session times on our sites. Each time you visit a new page on the site the cookie is set to expire within 30 minutes, if it does not find an existing cookie, a new one is created.
__utmc: This Cookie is used by Google Analytics in conjunction with __utmb to determine visitor sessions. Unlike __utmb this Cookie does not have an expiry date, it determines whether a new session should be created based on whether you have previously closed your browser, re-opened it and come back to the site. As a Session Cookie, it runs just for that visit.
__utmz: This Cookie is used by Google Analytics to determine the type of referral used by each visitor to arrive at our site. The cookie determines if the user has come directly to the site or via a search engine, email or email campaign. We use this data to understand how our users arrive at the website. It is a persistent cookie and expires in 6 months.
Global Marine Group, (FAO Data Protection Officer),
1 Winsford Way,
Essex, CM2 5PD, England.
or email: email@example.com.
If you remain dissatisfied following our response to any enquiry you can address your concerns to the Information Commissioners office (ICO), by contacting them via their livechat service ico.org.uk/livechat or calling their help line on 0303 123 1113, or via their website www.ico.org.uk.
End of Policy