Skip to content Skip to footer

Elite Signs Privacy Policy

At Elite Signs & Graphics Ltd, we are committed to protecting and respecting your privacy. This policy explains when and why we collect personal information, how we use it, the conditions under which we may disclose to others and how we keep it secure. Any queries regarding the policy and our privacy practices should be sent by email to hello@elitesigns.co.uk or by writing to Elite Signs & Graphics Ltd. 2320 Central Park, Western Avenue, Bridgend Industrial Estate, Bridgend, CF31 3RH.

Who are we?

We are Elite Signs & Graphics Ltd, a South Wales based family run sign company with over 20 years’
experience in the signs and graphics industry.

What information is being collected?

  • We obtain basic information from you when you contact us about our products and services either in person, over the phone or via email. The type of information we collect may include but will not be limited to: Your name, company name, address, telephone number, email
    address and details of the product you have enquired about.
  • We store your information securely on-site, and access restrictions are enforced to authorised personnel only. Computerised records are maintained with restricted access with automated backup and monitoring by our IT service providers. We do not store customer bank
    or payment card details.
  • We will also keep your details such as name, contact details, photographs of location, deposits paid etc electronically on our PC’s in customer named folders in our Signlab software. Signlab is a specialised computerised design and production software product. Our PC’s are password protected.
  • We use photographs from the work we have completed for customers on our social media channels to promote Elite Signs and also your (the customer) business.

Who will your details be shared with?

  • Where we feel appropriate after discussing your needs with you (the customer), we will seek permission from you (the customer) to pass on information to business partners such as marketing consultants, graphic designers who we feel will assist you with your business needs.
  • We may occasionally contact suppliers to ask for advice to fulfil your (the customers) bespoke signage needs.
  • We take photographs of the work that we create and manufacture for you (the customer) and will use these on social media sites such as (but not limited to): Facebook, Twitter, Instagram, Pinterest, Linkedin, Google+ and our Elite Signs website.
  • Our accountants have access to our Xero bookkeeping software which have customer contact details and invoice details but we do not store bank details on Xero.
  • We may on occasions use a safe approved installation contractor to fit signage. The information we pass to the 3rd party will include, customer contact details and address of where the signage is to be fitted. The information will not be used for any other purpose.
  • We may on occasions use a courier service to delivery goods to you that you have ordered.

How and where is your information stored?

  • We use Xero accountancy software and input your contact details, email address and the work
    required so that invoices etc can be automatically generated.

Xero’s GDPR policy states:
Similar to many SaaS providers, Xero uses a top-tier, third-party data hosting provider (Amazon Web Services) with servers located in the U.S., to host online and mobile services. For more information about AWS’s approach to compliance with the GDPR, see https://aws.amazon.com/compliance/gdpr-center/. Protecting our customers’ data is fundamental to everything we do.
To better understand our security practices, you can refer to our Security Pages: www.xero.com/accounting-software/security & www.xero.com/about/security

Xero has also completed a SOC 2 Type 2 report. The report covers the Trust Services Principles and Criteria for Security, Availability, and Confidentiality. SOC 2 audits are carried out by Ernst and Young, so it’s an independent assessment of Xero’s control environment against an internationally recognised assurance standard. You can request a copy of Xero’s SOC 2 report at www.xero.com/about/security/soc-report.

  • We may occasionally use Mailchimp which is a marketing automation platform and an email marketing service to contact you (our customers) by sending out Christmas newsletters, special offers etc. The contact information is accessed by Elite Signs from Xero contacts and downloaded
    onto our Mailchimp profile. Mailchimp’s privacy policy can be found: https://mailchimp.com/legal/privacy/
  • Hard copies of customer invoices are sometimes kept and these are stored in a secure environment.
  • Our IT systems are monitored and maintained by a specialist provider (ITCS), who provide onsite and remote support and maintenance. Our current hardware is compliant with current security standards and is maintained to ensure that antivirus solutions are updated daily, and software and operating security updates are installed in accordance with best practice. Critical updates are installed on next re-boot after release; other updates are installed within 14 days of release.

Access to your personal information

Under both the Data Protection Act 1988, and GDPR 2018, you are entitled to access any personal information we may hold on you. In order for us to ensure that we do not release this information to unauthorised individuals, we require that you make this request in writing and we may require
authentication before we release any personal information. Where the information we hold is found to be inaccurate or incomplete, you are entitled to have this information corrected. You may also be entitled to have any information we hold securely erased, however, we reserve the right to retain enough information to comply with legal obligations and to provide legal defence in the event of disputes or warranty claims.

Changes to this Privacy Notice

We may update the policy from time to time so please check this page occasionally to ensure that you are happy with any changes.

 

Cookies

This site uses cookies – small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymised tracking data to third party applications like Google Analytics. Cookies generally exist to make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the help section of your browser.

Necessary Cookies (all site visitors)
  • cfduid: Is used for our CDN CloudFlare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. See more information on privacy here: CloudFlare Privacy Policy.
  • PHPSESSID: To identify your unique session on the website.
Necessary Cookies (Additional for Logged in Customers)
  • wp-auth: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_logged_in_{hash}: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_test_cookie Used by WordPress to ensure cookies are working correctly.
  • wp-settings-[UID]: WordPress sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
  • wp-settings-[UID]:WordPress also sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users database table. This is used to customize your view of admin interface, and possibly also the main site interface.
5. Who Has Access To Your Data

If you are not a registered client for our site, there is no personal information we can retain or view regarding yourself.

If you are a client with a registered account, your personal information can be accessed by:

  • Our system administrators.
  • Our supporters when they (in order to provide support) need to get the information about the client accounts and access.
6. Third Party Access to Your Data
We don’t share your data with third-parties in a way as to reveal any of your personal information like email, name, etc. The only exceptions to that rule are for partners we have to share limited data with in order to provide the services you expect from us. Please see below:
Envato Pty Ltd
For the purpose of validating and getting your purchase information regarding licenses for this theme, we send your provided tokens and purchase keys to Envato Pty Ltd and use the response from their API to register your validated support data. See the Envato privacy policy here: Envato Privacy Policy.
Ticksy
Ticksy provides the support ticketing platform we use to handle support requests. The data they receive is limited to the data you explicitly provide and consent to being set when you create a support ticket. Ticksy adheres to the EU/US “Privacy Shield” and you can see their privacy policy here: Ticksy Privacy Policy.
7. How Long We Retain Your Data For

When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation.

If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit that information.

8. Security Measures

We use the SSL/HTTPS protocol throughout our site. This encrypts our user communications with the servers so that personally identifiable information is not captured/hijacked by third parties without authorization.

In case of a data breach, system administrators will immediately take all needed steps to ensure system integrity, will contact affected users and will attempt to reset passwords if needed.

9. Your Data Rights
General Rights

If you have a registered account on this website or have left comments, you can request an exported file of the personal data we retain, including any additional data you have provided to us.

You can also request that we erase any of the personal data we have stored. This does not include any data we are obliged to keep for administrative, legal, or security purposes. In short, we cannot erase data that is vital to you being an active customer (i.e. basic account information like an email address).
If you wish that all of your data is erased, we will no longer be able to offer any support or other product-related services to you.

GDPR Rights

Your privacy is critically important to us. Going forward with the GDPR we aim to support the GDPR standard. AncoraThemes permits residents of the European Union to use its Service. Therefore, it is the intent of AncoraThemes to comply with the European General Data Protection Regulation. For more details please see here: EU GDPR Information Portal.

10. Third Party Websites

AncoraThemes may post links to third party websites on this website. These third party websites are not screened for privacy or security compliance by AncoraThemes, and you release us from any liability for the conduct of these third party websites.
All social media sharing links, either displayed as text links or social media icons do not connect you to any of the associated third parties unless you explicitly click on them.

Please be aware that this Privacy Policy, and any other policies in place, in addition to any amendments, does not create rights enforceable by third parties or require disclosure of any personal information relating to members of the Service or Site. AncoraThemes bears no responsibility for the information collected or used by any advertiser or third party website. Please review the privacy policy and terms of service for each site you visit through third party links.

11. Release of Your Data for Legal Purposes

At times it may become necessary or desirable to AncoraThemes, for legal purposes, to release your information in response to a request from a government agency or a private litigant. You agree that we may disclose your information to a third party where we believe, in good faith, that it is desirable to do so for the purposes of a civil action, criminal investigation, or other legal matter. In the event that we receive a subpoena affecting your privacy, we may elect to notify you to give you an opportunity to file a motion to quash the subpoena, or we may attempt to quash it ourselves, but we are not obligated to do either. We may also proactively report you, and release your information to, third parties where we believe that it is prudent to do so for legal reasons, such as our belief that you have engaged in fraudulent activities. You release us from any damages that may arise from or relate to the release of your information to a request from law enforcement agencies or private litigants.

Any passing on of personal data for legal purposes will only be done in compliance with laws of the country you reside in.