Privacy Policy
Who we are
Ellie Rich Poole-Ltd, Registered no: 10239349
Our website address is: https://www.ellierichpoole.com.
What personal data we collect and why we collect it
Client Information
Client names, email addresses and other information required in the course of business will be retained electronically on our email server.
Recruitment Coaching
When assisting clients with recruitment coaching, we collect and store some personal information. This information includes CVs, identification documents, educational records, work history and employment. Information will be stored securely on email servers and on a laptop.
Research Projects
We collect or use the following information for research purposes: names and contact details, gender, location data, racial or ethnic origin, neurotype, personal information used for the purpose or administration of research, records of consent, where appropriate.
Research projects have included to date: Networking project, NED and Trustee project, Wonderful Women in collaboration with GFS. Where we have consent for this project, information may be shared with GFS.
Contact Forms and Cookies
If you complete a form on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again. This information will not be shared with third parties. If you’d like to delete cookies or instruct your web browser to delete or refuse cookies, please visit the help pages of your web browser. Please note, however, that if you delete cookies or refuse to accept them you may not be able to store your preferences.
Who we share your data with
Whatever your working relationship with Ellie Rich-Poole Ltd, we will not share your data with any third parties for marketing purposes. Client names and email addresses will be saved on the secure email server used by my business which is hosted by Microsoft. This is their privacy policy. Coaching agreements are collected via HelloSign/ DropBox Sign. This is their privacy policy. Marketing data (names and emails) is stored within our email marketing system, Mailerlite when clients opt-in. This is their privacy policy.
What third parties we receive data from
The personal data we keep is only the basic information provided by clients in the nature of doing business. This is securely transmitted and permission will be obtained by them according to their own privacy policies.
How long we retain your data
We retain contact information of existing clients and for previous clients indefinitely within our email system. Information about recruitment coachees is retained for 2 years following completion of the coaching programme.
What rights you have over your data
If you are an existing or previous client, have an account on this site, or have participated in a research project, you can request to receive a copy of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. Please contact ellie@ellierichpoole.com to request these services.
How we protect your data
We take the minimum data required from clients, website users and people who opt-in for our newsletter to ensure the smooth operation of the business (usually names and contact details only). This minimises the risk to individuals in the event of a data breech. Personal information is not stored on separate databases or shared with third parties. Emails are stored on Microsoft’s server and on a laptop and mobile devices for business use. These are kept locked with passwords and due consideration of hardware is given when in public places to avoid risk of theft. Marketing data is stored on Mailerlite as outlined above. Data which is supplied as part of the Wonderful Women research project will be shared with the GFS as part of that project. It will not be shared beyond these organisations.
What data breach procedures we have in place
Any breach of data will be reported to the ICO within 72 hours if a risk to individuals has been identified. We will also inform clients and users if their data has been compromised. By taking minimal information about clients and users this action is highly unlikely to be necessary.