1. Privacy Notice

1.1 Who are we?

BMJ Architects’ primary business activity is as Architects and Principal Designers in Healthcare, Education and Science fields with a particular specialism in highly serviced buildings. Our workload is throughout England and Scotland carried out from our studios in Glasgow and London.


This privacy policy provides information to you, about the basis on which any personal data we may collect from you, or that you provide to us, will be processed for example when you visit our website.


Our GDPR Owner Scott Grier can be contacted directly:

s.grier@bmjarchitects.co.uk

0141 271 3200


BMJ Architects is committed to protecting and respecting your privacy, please read the following carefully to understand our practices regarding your personal data and how we will treat it.


Personal data we would like to collect from you is:


Information you give us – information about you that you give us by filling in forms on our website or by corresponding with us by phone, email or otherwise, when you provide us with information requested by us for the verification of your identity, and when you report a problem with our site. The information you give us may include your name, address, email address, phone number and any comments or information you provide.


Information we collect about you – Regarding your visits to our site we may automatically collect.


- technical information, internet protocol (IP) address used to connect your computer to the internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.


- information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time) services you reviewed or searched for page response times, download errors, length of visits to certain pages page interaction information (such as scrolling, clicks and mouse overs) and methods used to browse away from the page and any phone number used to call us.


The personal data we collect will be used for the following purposes:


Information we collect about you. We will use this information to:


- improve our site to ensure content is presented in the most effective manner for you and for your computer;

- as part of our efforts to keep our site safe and secure;

- to make suggestions to you and other users of our site about services that may be of interest.


Our legal basis for processing for the personal data:

Data protection laws require that we meet certain conditions before we are allowed to use your data in the manner described in this privacy policy. To use your personal data, we will rely on consent.


Consent: We may provide you with marketing information about our services or products or invite you to our events where you have provided your explicit consent for us to do so.


Special categories of personal data.

We will not collect any special category data about you.



1.2 Disclosure

The following third parties may receive your personal data as follows:


We will only disclose your information to:

• business partners, suppliers, sub-contractors for performance of any contract we enter into with them or you;

• Google Analytics who assist us in improvement and optimisation of our site;

• law enforcement or fraud prevention agencies, as well as our legal advisers etc.


We may disclose your personal information to third parties:

• in the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets;

• in order to enforce or apply our website terms of use;

• if we are under a duty to disclose or share your personal data in order to comply with any legal obligation or regulatory requirements, or otherwise for the prevention or detection of fraud or crime.


Where we have given you (or you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. Please do not share your password with anyone.


Your rights as a data subject

You have a number of rights under data protection law in relation to your personal data. These are set out below. You may contact us using the details on our site (or by contacting us directly – details below) to exercise any of these rights. We will respond to any request received from you within one month from the request date.


Please address any questions, comments and requests regarding our data processing practices to:

s.grier@bmjarchitects.co.uk



1.3 Retention period – how long will BMJ keep my information?

When your data is no longer required for the purposes listed above, we will delete it as soon as possible but in any event, within 15 years.



1.4 Your rights as a data subject

While we are in possession of or processing your personal data, you, the data subject, have the following rights:

• Right of access –to request a copy of the information that we hold about you.

• Right of rectification –to correct data that we hold about you that is inaccurate or incomplete.

• Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased.

• Right to restrict processing – where certain conditions apply, you have a right to restrict processing.

• Right of portability – to have the data we hold about you transferred to another organisation.

• Right to object –to object to certain types of processing such as direct marketing.

• Right to judicial review: in the event that BMJ Architects refuses your request under rights of access, we will provide you with a reason as to why. You have the right to complain as outlined in clause 1.5 below.

All of the above requests will be forwarded on should there be a third party involved (as stated in 1.2 above) in the processing of your personal data.



1.5 Complaints

In the event that you wish to make a complaint about how your personal data is being processed by BMJ Architects (or third parties as described in 1.4 above), or how your complaint has been handled, you have the right to lodge a complaint directly with the supervisory authority and Boswell Mitchell & Johnston’s GDPR Owner, Scott Grier


The details for each of these contacts are:


Supervisory authority contact

First Contact Team

Information Commissioner’s Office

Wycliffe House

Water Lane

Wilmslow

SK9 5AF


[GDPR Owner] contact

Scott Grier, Director

BMJ Architects

The Hub

70 Pacific Quay

Glasgow

G51 1DZ

s.grier@bmjarchitects.co.uk

0141 271 3200