Policy prepared by: PAM/ajm
Version 1: April 2018
Approved by the Council and Directors on: 17th May 2018
The Cast Metals Federation are committed to protecting and respecting your privacy.
This policy sets out the basis on which any personal data we collect from you, or you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
Information we may collect from you
When you provide information to CMF, either because you work for a company that is a Member of CMF, or to request a service or make an enquiry, we may ask for specific information from you in order to provide that service to you.
We may collect and process the following data about you:
- You may give us information by filling in a form or by corresponding with us by phone, e-mail or otherwise. This includes information you provide when your company joins the Federation as well as information you provide when making an enquiry or attending an event organised by us or by one of our partners. The information you give us may include your name, address, e-mail address and phone number.
- Information we collect about you. With regard to each of your visits to our website, we may automatically collect the following information:
- Technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.
- Information about your visit, including the full Uniform Resource Locators (URL) through and from our site (including date and time): foundries and suppliers you have searched for: page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks and mouse overs) and methods used to browse away from the page.
- Information we receive from other sources. We are also working closely with third parties (including, business partners, contractors in technical and payment services, analytics providers, search information providers) and may receive information about you from them.
All individuals have the right to access the information the Cast Metals Federation holds about them. The Cast Metals Federation will also take reasonable steps ensure that this information is kept up to date by asking you whether there have been any changes to information.
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer’s hard drive.
We use the following cookies:
- Strictly necessary cookies. These are cookies that are required for the operation of our site. They include, for example, cookies that enable you to log into secure areas of our site, such as the member’s area.
- Analytical/performance cookies. They allow us to recognise and count the number of visitors and to see how visitors move around our site when they are using it. This helps us to improve the way our site works, for example, by ensuring users are finding what they are looking for easily.
Uses made of Information
We use information held about you in the following ways:
- To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you expect from us as a Trade Association or to deal with enquiries and respond to your requests.
- To provide you with information about other services we offer.
- To provide you with information about services we feel you may benefit from.
- To notify you about changes to our service.
- To ensure that content from our website is presented in the most effective manner for you and your computer.
Information we collect about you. We will use this information:
- To administer our website and for internal operations, including troubleshooting, data analysis and testing.
- To improve our website site to ensure that content is presented in the most effective manner for you and for your computer.
- To allow you to participate in interactive features of our service, when you choose to do so.
- As part of our efforts to keep our website safe and secure.
- To measure or understand the effectiveness of our search facility.
- To make suggestions and recommendations to you and other users of our website about the services we provide that may be of interest.
- Information we receive from other sources. We may combine this information with
information you give to us and information we collect about you.
Disclosure of your information
We may share your information with selected third parties including:
- Business partners, for the performance of any contract we enter into with them or you.
- To assist us to provide a service to you such as providers of email communications services for bulk mailings, or to set up access to the Members area of our website with our website support contractor.
- Analytics and search engine providers that assist us in the improvement and optimisation of our site
We share your personal data with your consent or as necessary to complete any transaction or provide any product you have requested or authorised. For example, we share your content with third parties when you tell us to do so, such as BSi to deliver ordered standards. When you provide payment data to make a purchase, we will share payment data with banks and other entities that process payment transactions or provide other financial services, and for fraud prevention and credit risk reduction.
We also share personal data with vendors or agents working on our behalf for the purposes described in this statement. For example, companies we’ve hired to provide customer service support or assist in protecting and securing our systems and services may need access to personal data to provide those functions. In such cases, these companies must abide by our data privacy and security requirements and are not allowed to use personal data they receive from us for any other purpose.
Where we store your personal data
Information and records will be stored securely and will only be accessible to authorised staff. We ensure that staff are trained and understand the contractual requirement for following good data protection practices.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. We ask you not to share the password.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Our website site contains links to and from the websites of partners and members. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data.
Our Retention of Personal Data and your Right to Removal
CMF retains personal data for as long as necessary to provide the products and fulfil the transactions you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes and enforcing our agreements. Because these needs can vary for different data types in the context of different products, actual retention periods can vary significantly. The criteria used to determine the retention periods include:
- How long is the personal data needed to provide the products and operate our business? This includes such things as maintaining and improving the performance of those products, keeping our systems secure and maintaining appropriate business and financial records. This is the general rule that establishes the baseline for most data retention periods.
- Do customers provide, create or maintain the data with the expectation we will retain it until they affirmatively remove it? In such cases, we maintain the data until you request it to be deleted.
- Is there an automated control that enables the customer to access and delete the personal data at any time? If there is not, a shortened data retention time will generally be adopted.
- Is the personal data of a sensitive type? If so, a shortened retention time would generally be appropriate.
- Has CMF adopted and announced a specific retention period for a certain data type?
- Has the user provided consent for a longer retention period? If so, we will retain data in accordance with your consent.
- Is the CMF subject to a legal, contractual or similar obligation to retain the data? Examples can include mandatory data retention laws in the applicable jurisdiction, government orders to preserve data relevant to an investigation or data that must be retained for the purposes of litigation.
The CMF has a Retention and Disposal policy that is followed and copies may be requested from CMF.