Privacy Policy

CAPELO Design takes your privacy seriously, and is committed to protecting and respecting it.

We want you to understand how we collect and use information about you. We also value your comments about the way we do this.

The privacy notice describes to you:

It also contains information on the correct people to contact in the unlikely event that you have a complaint.

Who are we?

Here are some key details about us:

Our name: CAPELO Design Limited (we will refer to ourselves using the word “we” and related words such as “us” and “our” in this privacy notice)
Place of incorporation: England and Wales (this is where we are registered)
Company number: 10343997
Registered address: Unit 4, Woodside Industrial Estate, Thornwood, Epping CM16 6LJ
VAT number: 248556963

Under data protection law, we are considered to be a “controller”. As a controller, we are responsible for, and control the processing of, your personal data. We are registered as a data controller with the Information Commissioner’s Office, which is the UK’s supervisory authority for data protection matters.


What information do we collect from you?

In the course of our business – namely, acting as a design consultancy specialising in architectural and interior design delivery – we collect the following personal data when you provide it to us:

personal details, such as

contact data, such as

biographical data from job applications and CVs, such as

payment details, such as

transaction data, such as

technical data, such as

usage data, such as

marketing data, such as


We do not knowingly collect “special category” personal data.This is a type of particularly sensitive datato which more stringent processing conditions apply, and comprises data concerning your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, sex life or sexual orientation, and genetic data and/or biometric data.

We also do not collect information about criminal convictions or offences.


How do we collect personal data?

We obtain personal data from sources as follows:


How do we use your personal data?

Introduction

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

Lawful processing

In order to process personal data, we must have a lawful reason (sometimes called a lawful basis). We always ensure that this is the case, and we set out our lawful bases below – but please note that more than one may apply at any given time: for example, if we inform you of changes to our privacy notice, we may process your personal data on the ground of complying with law and on the ground of legitimate interests.

We will use your personal data only for the purposes for which we collected it, unless we fairly consider that we need it for another reason that is compatible with the original purpose.

Please contact us if you would like more information on this, and on situations in which more than one lawful basis applies.

Contractual Necessity

If you are our customer or applying for a job, we will process your personal data for the following purposes, on the legal basis that it is necessary for us to provide our products and services to you:

Legitimate Interests

We process your personal information for our legitimate business purposes, which include the following:

Whenever we process your personal data for these purposes, we ensure that your interests, rights and freedoms are carefully considered.

Compliance with laws

We may process your personal data in order to comply with applicable laws (for example, if we are required to co-operate with an investigation pursuant to a court order).

Consent

Generally we do not rely on consent as a legal basis for processing your personal data other than in relation to sending third-party direct marketing communications to you via electronic means where we are not otherwise entitled to do so. You have the right to withdraw consent to marketing at any time. This will not affect the lawfulness of processing that took place prior to the withdrawal of consent.

We will always be clear whenever we intend to process on the basis of consent, and we will process lawfully and only for the purpose for which consent was given.


Do we share your personal data?

We may provide your personal data to the following recipients for the purposes set out in this notice:


Do you have to provide personal data – and, if so, why?

To form a contract with you, we will need some or all of the personal data described above so that we can perform that contract or the steps that lead up to it: this is set out above in this notice. If we do not receive the data, it will not be possible to perform that contract.


For how long will we keep your personal data?

We carefully consider the personal data that we store, and we will not keep your information in a form that identifies you for longer than is necessary for the purposes set out in this notice or as required by applicable law. In some instances, we are required to hold data for minimum periods: for example, UK tax law currently specifies a minimum six-year period for retention of some of your personal data.


Marketing

We may store your contact details, and carry out marketing profiling activities, for direct marketing purposes. If you have given your consent, or if we are otherwise permitted to do so, we may contact you about our products or services that may be of interest to you. You will be given the opportunity to opt out each time you are contacted, and you may also opt out at any other time by e-mailing hello@capelo.design. This will not affect the lawfulness of processing that took place prior to your opt-out.


Do we transfer personal data outside the EEA?

Although we are based in England, we may transfer your personal information to a location (for example, to a secure server) outside the European Economic Area, if we consider it necessary or desirable for the purposes set out in this notice.

In such cases, to safeguard your privacy rights, transfers will be made to recipients to which a European Commission “adequacy decision” applies (this is a decision from the European Commission confirming that adequate safeguards are in place in that location for the protection of personal data), or will be carried out under standard contractual clauses that have been approved by the European Commission as providing appropriate safeguards for international personal data transfers, or by the adoption of EU-US Privacy Shield.

For more information, please contact us using the details in section 15 below.


How do we keep your personal data secure?

We have security measures in place designed to prevent data loss, to preserve data integrity, and to regulate access to the data. Only our authorised employees and third parties processing data on our behalf have access to your personal data.
All our employees who have access to your personal data are required to adhere to our privacy policy and we have in place contractual safeguards with our third-party data processors to ensure that your personal data is processed only as instructed by us.

The security measures we have in place include:

We take all reasonable steps to keep your data safe and secure and to ensure the data is accessed only by those who have a legitimate interest to do so. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to us. Any transmission over the internet is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.
Please contact us using the details in section 15 below if you would like more information about this.


Your information rights

We draw your attention to your following rights under data protection law:

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.

Please contact us using the details in section 15 below if you would like to know more about, or to exercise, these rights.
These rights are subject to certain limitations that exist in law. Further information about your information rights is available on the ICO’s website: https://ico.org.uk/.


Cookies

Our website uses cookies. For more information on which cookies we use and how we use them, please see our Privacy Policy.


Changes to this privacy notice

We may change this notice from time to time. You should check this notice on our website occasionally, in order to ensure you are aware of the most recent version.

What should you do if you have a complaint?

We hope that you will be satisfied with the way in which we approach and use your personal data.
Should you find it necessary, you have the right to raise a concern with our supervisory authority, the Information Commissioner’s Office: https://ico.org.uk/.
However, we do hope that if you have a complaint about the way we handle your personal data, you will contact us in the first instance using the contact details in section 15 below, so that we have an opportunity to resolve it.


Do you want to contact us?

If you would like to contact us about this notice, including if you wish to receive further information about any aspect of it, our details are as follows:

E-mail
hello@capelo.design

Post
Capelo Design Limited
Unit H, Third Floor
81 Curtain Road
London EC2A 3AG
For the attention of: Gerald Allbury

Telephone
020 3870 4032