The Data Controller connected with this Privacy Notice is Full Fibre Limited (Full Fibre), a company incorporated and registered in England & Wales and registered with the Information Commissioner’s Office (ICO).
Registered Office: 2 Pynes Hill Court, Pynes Hill, Exeter, Devon, EX2 5AZ
Telephone: 0333 121 0505
Your data will be processed for the purpose of keeping you informed about our network availability in your area and which of our partners (internet service providers – ISPs) can provide you with a full fibre broadband connection.
The collection of your data for the purpose outlined in paragraph 1 is under the Lawful Basis of Consent. This is because you have asked us to keep you updated, by electronic mail, or telephone, regarding our full fibre broadband network. For this under the Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR), we require your consent.
The personal data we may collect from you and process about you in connection with this purpose is:
3.1. Postcode (Address)
3.3. Email Address
3.4. Telephone number
3.5. IP address
Under the Lawful Basis referred to in paragraph 2, your data will be retained for 36 months from receipt; this is so we may keep you informed as our network is built and also, so that we, or our partners (ISPs) may contact you when any broadband contract you might currently have in place is due for renewal.
If, at an earlier point, you would like us to stop communicating with you, you can ask us to cease processing your data (see paragraph 7 below).
At the end of the relevant retention period outlined above, your data will be destroyed using an approved method, unless prohibited by court order.
6.1. In order to help keep you informed about the full fibre broadband services available to you over our network, we may share your data with a small number of partners, (ISPs). At that point they should contact you and share their own privacy notice with you, so you have transparency regarding how they intend to use your data to help you.
6.2. In addition, to help us administer our database and our business, we may use the following processors to help us:
6.3. They process your data under our direction and are expressly prevented from using your data for any other purpose.
6.4. Where data is shared outside of the UK the other parties are located in the European Economic Area and covered by the UK’s adequacy regulations.
7.1. Under the General Data Protection Regulation as incorporated into UK law, (UK GDPR) and the Data Protection Act 2018, you, the Data Subject, have certain rights regarding the control and processing of your personal data. Details regarding your rights can be found on the ICO’s website.
7.2 Should you wish to contact Full Fibre in order to exercise any of these rights, please email our Data Protection Manager using the following email address: firstname.lastname@example.org.
8.1. Recognising the importance of information security to our business and clientele, Full Fibre has put in place appropriate technical and organisational measures to secure the personal data it processes. These include (but are not limited to) data segmentation and electronic data encryption, as well as the monitoring of our information systems.
8.2. Personal data held on paper is secured in locked cabinets with access limited to appropriately authorised personnel.
8.3. Data Subjects should be aware that not all electronic communications are secure. We use Transport Layer Security (TLS) to encrypt and protect email traffic in line with government advice. However, if your email service does not support TLS, you should note that any emails we send or receive may not be protected in transit.
8.4. We will monitor any emails sent to us, including file attachments, for viruses or malicious software. Please be aware that you have a responsibility to ensure that any email you send complies with any applicable legal requirements.
Should you have any concerns regarding the way an organisation such as Full Fibre is processing your personal data, the ICO recommends that, in the first instance, you contact the organisation concerned. If the organisation does not address those concerns in an appropriate manner, you then have the option to escalate the issue to the ICO. If you wish to contact us because you have concerns about our use of your personal data, please contact our Data Protection Manager using the details provided in paragraph 7.2.
This Privacy Notice is kept under review and is updated as appropriate. It was last updated on 10 May 2023.