McCallum Communications is a UK-based marketing agency based in the United Kingdoml. McCallum Communications is committed to protecting personal data and respecting the privacy of individuals. The following policy describes how we collect and handle personal data throughout the course of our interaction with clients and how we respect those rights and comply with applicable legislation.
Should you have any queries with regard to this policy or wish to make a subject access request or exercise any other rights under the terms of the UK Data Protection Act 2018 and the European Union General Data Protection Regulation please use our Contact Us page.
You can also put any request in writing to the following address:
You have the right to make a complaint about our handling of your personal data to the UK Information Commissioners Office (ICO). For further details see: https://www.ico.org.uk/concerns.
Definition of Personal data
Personal data is defined as information which can be used to identify an individual, either directly (name, date of birth, address) or indirectly (IP addresses, cookies et al). Further details of the definition of personal data can be found on the Information Commissioner’s Officer’s web page (https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/key-definitions/what-is-personal-data/).
McCallum Communications collects personal data as defined above in the course of our operations. We do not collect special categories of personal data (such as race/beliefs/sexual orientation etc).
We collect much of the information based upon: –
Without your consent to provide personal data as part of delivery of a contract with you (for example, to provide one of our services or to receive payment) then we may not be able to successfully fulfil the contract.
Our collection of personal data is for the following purposes.
If you contact McCallum Communications via telephone, email, this website or any social media channel then we will collect the contacting party’s name, job title, company name, address, email address and telephone numbers. Through the course of ongoing interactions with you we may similarly collect the personal details of other people within the business based upon a requirement for interaction with them in the delivery of our services or for marketing purposes. Where there is no case of legitimate interest you must opt-in to receive marketing communications from us and you can withdraw this consent at any time using the “unsubscribe” feature of our communications.
The collection of this information is for the purpose of potentially providing proposals, entering into negotiations and for the possible delivery of business services to you based upon your contact.
We may share this information with our staff, associates and suppliers (e.g. solicitors and accountants), only where necessary in the delivery of a service to you under the terms of any commercial relationship we have in place. In the event that you do not enter into any commercial agreement with us for the delivery of our services we will not share your information to any third party, unless as required by law.
We will only retain this information within our Customer Relationship Management systems, email messages and other systems and applications for as long as necessary, including for the purposes of satisfying any legal / regulatory, accounting, or reporting requirements.
All marketing emails will include the ability to opt-out (via an unsubscribe link) from receiving future communications from us. Additionally, you may request us to ensure that you do not receive marketing communications from us via any source via our Contact Us page.
Furthermore, if you contact McCallum Communications via the contact us page or order a Cyber Essentials assessment on this website, then we will collect the contacting party’s name, job title, company name, address, email address and telephone numbers. We also collect IP addresses of your organisation on the Cyber Essentials ordering page. Payment for a Cyber Essentials assessment is made via Paypal and we do not collect or store your payment details or any information pertaining to your payment data submitted to Paypal. See Paypal’s privacy policies for further details of how they collect, store and process this informaiton.
Information submitted via forms on the McCallum Communications is forwarded to staff members only and we will only retain this for as long as necessary, including for the purposes of satisfying any legal / regulatory, accounting, or reporting requirements.
We do not share client personal data with third parties unless there is a legal requirement to do so or to ensure the successful delivery of services to you. Examples of legitimate business purposes for the sharing of your personal data include: –
We do not sell your personal data to any other organisation.
We may store your personal data on: –
In using these services, the data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”) and transferred from such destination to another destination outside the EEA. Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring our suppliers are compliant with the GDPR legislation.
Personal data is only retained for as long as we need it to deliver our services to you or to meet our legal obligations as outlined above. Once personal data collected is no longer required it will be deleted from our storage facilities. Our data retention policy is available on request.
Information security of personal data
As a cyber security consultancy McCallum Communications is committed to the information security of personal data that it collects, processes and stores. McCallum Communications is assessed to the UK Cyber Essentials Plus standard on an annual basis and is currently implementing an ISO27001 ISMS with a plan to have this certified in the future.
McCallum Communications has implemented technical security controls and information handling policies to mandate how data is protected within the organisation. Our data handling and customer engagement policies associated with the delivery of our client engagements have been independently audited by CREST.
Under the terms of the UK Data Protection Act 2018 you have a number of rights with regard to our handling of your personal data: –
These are defined by the ICO at the following URL: –
Further details can also be found at the following URL: –
You have the right to obtain a copy of all personal data we hold on you (subject access request). We do not charge to provide this access to personal data held). However, unfounded or excessive requests may lead to the leverage of an administrative fee at our standard admin hourly rate. Alternatively, we may refuse to comply with the request in such circumstances, for example if requests are unfounded or excessive.
To ensure security we may need to confirm your identity using a passport or other Government-approved identification method.
To request a copy of the personal data we may hold on you, use our Contact Us page.
You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of many other websites that you visit.
This site uses Google Analytics for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track how long you spend on the site and the pages that you visit so we can continue to produce engaging content.
If you require further information this topic, please contact us via email: email@example.com
We make use of the following cookies on our website for the reasons listed below: –
For further details on the use of Google Analytics cookies see: