Privacy Policy

General
HeatingSave Ltd (“HeatingSave”) recognises and respects the importance of your privacy and that you need to understand how your personal data is used. We will only collect and use data relating to you and your business in the ways described within this policy and in line with that provided in law.

Who are we?
HeatingSave is a private limited company registered in England with the company number 06628496. Our registered address and from where we operate is 589 Great North Road, Eaton Ford, St Neots, Cambridgeshire PE19 7GJ. Our contact details are

Telephone number is 01480223923
Data Protection officer is Kate Smith
VAT number is 1083 24930
Email contact dpo@tensor.co.uk

What are your rights?
Your rights are governed by GDPR which we will always strive to achieve. These are,

1. The right to be informed about our collection and use of your personal data. This Privacy Policy should tell you everything you need to know, but you can always contact us to find out more or to ask any questions using the details in Part 11.
2. The right to access the personal data we hold about you. Part 10 will tell you how to do this.
3. The right to have your personal data rectified if any of your personal data held by us is inaccurate or incomplete. Please contact us using the details in Part 11 to find out more.
4. The right to be forgotten, i.e. the right to ask us to delete or otherwise dispose of any of your personal data that we have. Please contact us using the details in Part 11 to find out more.
5. The right to restrict (i.e. prevent) the processing of your personal data.
6. The right to object to us using your personal data for a particular purpose or purposes.
7. The right to data portability. This means that, if you have provided personal data to us directly, we are using it with your consent or for the performance of a contract, and that data is processed using automated means, you can ask us for a copy of that personal data to re-use with another service or business in many cases.
8. Rights relating to automated decision-making and profiling. Part 6 explains more about how we use your personal data, including automated decision-making and/or profiling.
9. If you have concerns or a complaint about our use of your personal data please contact our Data Protection officer

What personal data will we hold?
We may collect some or all of the following personal data which may vary depending upon our trading relationship. Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (the "GDPR") as 'any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier'.

Personal data covers obvious information such as your name and contact details, details of your business, VAT number and other information that enables us to help you submit your MTD VAT return. This included identification numbers and other online identifiers. This may include,

Name and job title, Date of birth, Gender, Address, Email address, Business name, Telephone number, HMRC MTD and VAT information with payment data, financial and tax information including publicaly available information such as HM Revenue & Customs and Companies House data. We will NOT hold information relating to your preferences and interests.

How will we use your personal information?
We are governed by the GDPR legislation and will only hold this personal information so that we can help you submit your MTD VAT return. By consenting us to use of your personal data you are agreeing to us to continue our legitimate business interests. Specifically, we will use your personal data to,

1. Manage your online account with us so that we can help your submit your MTD VAT free of charge. We take no responsibility for the accuracy of your VAT return. Getting the data right is your responsibility. You will complete the spreadsheet provided by us and our sole responsibility shall be to make reasonable endeavours to feed this through to the HMRC web portal.
2. From time-to-time offer to supplying other of our products and services to you. We need your personal details to do this. We may also need personalise and/or change the products and services we offer to you. This work may include,
3. Communicating with you and responding to emails or calls from you.
4. Organise and manage our website, including some personalisation of it to you, and running our business.
5. Enable and change your use of the services available on our website.
6. Supply to you services purchased through our website.
7. Send you advice notifications information, which may include information that you have specifically requested.
8. Information to allow you to receive our free HeatingSave newsletter by email.
9. Receive and manage any complaints made by you relating to our website.
10. Secure and keep safe our website and prevent fraud.
11. Verify compliance with the terms and conditions governing the use of our website
12. Provide information to you via email and/or post that you have agreed to receive on the understanding that at any time you may withdraw this consent by emailing us to do so.

We may disclose your personal information:

1. to the extent that we are required to do so by law;
2. in connection with any ongoing or prospective legal proceedings;
3. in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);
4. to the purchaser (or prospective purchaser) of any business or asset that we are (or are contemplating) selling; and
5. to any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.
6. Except as provided in this policy, we will not provide your personal information to third parties.

How long will we keep your personal data?
We will not keep your personal data for any longer than the purpose for which it was originally collected or until you tell us to delete it.

Where we keep your data?
We will store your data on password and firewall protected servers that are primarily based in the UK. Where it is commercially prudent to do so, we will store your personal data on servers outside the UK but this will be where reasonably possible with servers located in countries that have good data protection laws although they may not be as full as those within the UK and/or the European Economic Area.

We share your data within the group of companies of which we are a part. Where this involves the transfer of personal data outside the EEA, our group ensures that personal data is protected by requiring all companies within the group to follow the same rules with respect to personal data usage. These are known as "binding corporate rules". More information on binding corporate rules is available from the European Commission.

If you have concerns, then please contact us via email using the contact information at the beginning of this document.

Measure we take to keep your information safe
We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information. Where practical, we encrypt data, but it must be made clear that data transferred via the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet. However, we will use the guidance information from HMRC as to how best to securely communicate with their MTD servers.

Your security responsibilities
You are responsible for keeping MTD free confidential and only disclosing them to people you trust. Apart from when you log onto our website, we will never ask you for your passwords via email or any other communication. If you do receive such communications then they are not from us, and you must not disclose them.

Disclosure of your personal data to 3^rd parties
In rare circumstances we may be forced legally to disclose your personal data if we instructed to do so by a court order or if we are conducting legal proceedings or complying with legal requirements instructed by a Government authority. With the exception of the above we will not share your personal data with third parties.

How Can I Access My Personal Data?
You are able to access for free your personal data via our MTD-free website.

The use of cookies on our website
A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

Cookies may be either "persistent" cookies or "session" cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.

Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies.

We use both session and persistent cookies on our website. MTD-free relies on cookies to manage your secure connection. By using MTD-free you are consenting to their use.

We use cookies on our website to recognise a computer when a user visits the website / track users as they navigate the website / enable the use of a shopping cart on the website / improve the website's usability / analyse the use of the website / administer the website / prevent fraud and improve the security of the website / personalise the website for each user / target advertisements which may be of particular interest to specific users.

Most browsers allow you to refuse to accept cookies; for example:

1. in Internet Explorer version 11 you can block cookies using the cookie handling override settings available by clicking "Tools", "Internet Options", "Privacy" and then "Advanced";
2. in Firefox version 39 you can block all cookies by clicking "Tools", "Options", "Privacy", selecting "Use custom settings for history" from the drop-down menu, and unticking "Accept cookies from sites"; and
3. in Chrome version 44, you can block all cookies by accessing the "Customise and control" menu, and clicking "Settings", "Show advanced settings" and "Content settings", and then selecting "Block sites from setting any data" under the "Cookies" heading.

Blocking all cookies will have a negative impact upon the usability of many websites and if you block cookies, you will not be able to use all the features on our website.

At any time you can delete cookies stored on your computer; for example:

1. in Internet Explorer version 11, you must manually delete cookie files (you can find instructions for doing so at http://windows.microsoft.com/en-gb/internet-explorer/delete-manage-cookies#ie=ie-11);
2. in Firefox version 39, you can delete cookies by clicking "Tools", "Options" and "Privacy", then selecting "Use custom settings for history" from the drop-down menu, clicking "Show Cookies", and then clicking "Remove All Cookies"; and
3. in Chrome version 44, you can delete all cookies by accessing the "Customise and control" menu, and clicking "Settings", "Show advanced settings" and "Clear browsing data", and then selecting "Cookies and other site and plug-in data" before clicking "Clear browsing data".

Changes to this Privacy Policy

HeatingSave may change this Privacy Policy from time to time. This may be necessary, for example, if the law changes, or if we change our business in a way that affects personal data protection. You will be notified of any changes via our website www.heatingsave.com