This privacy statement applies solely to information collected by this Web site.
Our Company Obligations
As a data controller the EUG is responsible for the data you provide us with.
We will only ever use your data:
- In ways that are both fair and legal
- As described within this policy
- In ways that are necessary for the purposes described
Who our Privacy Notice applies to
Where our Web site contains links to other sites, the EUG, are not responsible for the privacy practices of such other sites.
The personal information we collect
We will only use your personal information to provide you with the products and services you have requested, as well as to administer your account. The EUG collects the following personal information about you:
- First names and surname
- E-mail address
- Telephone number
- Company Name & Details
- Job function
- Details of any services you have requested
- Credit Card / Payment details
- Attendance at any networking event (online or in person) that we may run
Sensitive data and Children
The EUG does not collect any sensitive data about you. Sensitive data refers to (but is not limited to) information about your race or ethnic background, religious or political affiliations, trade union affiliations, sexual orientation, criminal background, or health background.
We will not collect or store any information on any person under the age of 18.
Cookies allow web applications to recognise you as an individual by remembering information about your preferences. Our site is not cookie free and are used in some areas of our site to improve the ease of use.
You can choose to manage cookies in your browser however please remember that this may restrict the information we may display to you or may even spot the website from functioning properly.
We also use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website. We only use this information for statistical analysis purposes and the data is not retained and is deleted from the system.
Cookies do not give access to your computer or any information about you, other than the data you choose to share with us.
How do we use Personal Data?
We use personal information: –
- To identify you are when you contact us
- To manage your account
- To provide you with information on our services
- To invite you to any event that may be relevant or of interest to you
- To advise you of any information that is relevant to you or your use of our services.
- To answer your queries or general enquiries that you may have
- To resolve any concerns or complaints that you may have raised with us.
- To send you marketing information about the EUG
- To create a membership directory for all members to access to improve networking and community activity
- To allow you to participate in our community forums and ask questions.
- To identify who has downloaded information from our resource libraries.
- To protect legitimate interests
Do we share Personal Data?
The EUG only uses personal data for the reasons for which we have collected however, we may also at times be required by law to process your personal data without your knowledge.
We will share information with third party companies where appropriate to offer our services or manage our business. Examples (not exhaustive) are service providers who perform accounting, insurance, marketing, regulatory, legal, event venues, or IT services.
All third parties to which we transfer data are required to respect your personal data, keep it secure and process it only for the specified purposes for which it has been collected. Third parties will only ever receive or process your data with our explicit permission
We will never sell your information to anybody.
Automated decision-making processes
The EUG does not have any automated decision-making processes in place
The EUG has implemented a series of security measures to make sure that your personal data is protected from accidental loss, unauthorised access, alteration, or disclosure. The EUG limits access to your data only to those employees, agents, contractors or other third parties with a legitimate reason to access that information. Those individuals or organisations will only ever process or access your personal data upon our explicit instructions. They are subject to a duty of confidentiality.
Information you offer to us that we do not request such as personal and sensitive details on a public forum are at your own risk and not covered by this policy. If however you have published information in error or require it to be removed please contact us and we will use our best endeavours to remove on your behalf.
Data processing and storage
The EUG will retain personal information securely on third party servers operated by third-party service providers. These third-party service providers have access to your personal information as needed to perform their functions but may not use it for any other purpose. The EUG will ensure that all third-party service providers comply with our privacy notices and requests and will also have in place relevant security and privacy policies to comply with GDPR or similar legislation appropriate for the region in which they operate.
The EUG stores data relating to transactions, payments, and orders for a period of up to seven years. This period may be extended under certain circumstances as part of our ongoing commitment to comply with UK and international law.
Personal Data, that we are not required to keep as part of legitimate business interest or legal reasons, will only be retained for a length of time necessary to manage the profession relationship between the EUG and you. We will carry out periodic data reviews of the information we hold to keep data accurate and relevant.
Data transfers to countries outside the US / EU
As part of our operations and the service we supply to you, it may be necessary to transfer your data outside of the US or the EU. The EUG will use appropriate safeguards to ensure that your personal data is treated securely and in accordance with the appropriate data protection legislation. The EUG will always ensure any third-party outside of the US or the EU has a data privacy notice or policy is in place that is equal to or better than ours.
As part of our ongoing commitment to data privacy and GDPR, the EUG will report any security breaches or attempted breaches to the relevant authorities within 24 hours. We will subsequently contact all those affected by the breach within 72 hours of its occurrence.
Communications and how we may contact you
The EUG may contact you by post, telephone, and / or email, unless you have asked us not to. We will share with you information that we feel may be of interest to you relevant to your membership (including, but not exclusively, service announcements, membership matters, customer service, regional group information and details of events / webinars). We will make it clear whenever such a communication will take you to a third party out of our control.
You have the right to withdraw consent at any time by contacting us.
Please note that if you opt out of receiving communications from us your personal data may still be retained if it relates to the provision or purchase of a product and/or service, warranty registration or other transactions.
You have the right to accurate information and may request any of the following actions to be applied to your data: –
ACCESS – you can request access to your personal information
OBJECT – you have the right to object to the processing of your personal information for direct marketing purposes or where the processing is not necessary under the legitimate interests of the EUG business activity.
RECTIFICATION – you can request rectification of any personal data we hold that is outdated or incorrect
ERASURE – you can request that all or any part of your personal data is erased where the processing is not necessary for the purposes under the legitimate interests of the EUG.
To manage your rights and delivery preferences please write to us at:
Post: Epicor Users Group, PO BOX 10368, Lancaster, PA 17605
Changes to the Privacy Notice
We will process any request within 30 days. Subject Access Requests are normally performed free of charge, but we may need to charge individuals for excessive or unreasonable data requests.