Technology Holdings International Inc. and its affiliated companies (we or us) are committed to protecting your personal information and respecting your privacy.
This Privacy Notice, together with any other documents referred to in it, sets out the basis on which any personal data that we collect from or about you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we treat it.
For the purpose of the UK General Data Protection Regulation, the UK Data Protection Act 2018 and any corresponding legislation in other jurisdiction, the data controller is TH GARP Asset Management Ltd (13967094) is a company registered in England & Wales with registered address at: 99 Bishopsgate, London, England, EC2M 3XD. TH GARP Asset Management Ltd is an appointed representative of G10 Capital Limited which is authorised and regulated by the Financial Conduct Authority.
We may update this Privacy Notice from time to time. Any changes we make in the future will be posted on our website at www.technologyholdings.com. Please check back regularly to see any updates or changes to this Notice.
Data Protection Lead
The contact details for our Data Protection Lead:
Name: Geeta Ramanathan, Chief Operating Officer
Email: geeta@technologyholdings.com
Telephone: +44 (0) 78071 73414
Letter: Geeta Ramanathan, Chief Operating Officer, Technology Holdings International Inc., 1309 Coffeen Avenue Suite 7174 Sheridan WY 82801, USA
It is the responsibility of the Data Protection Lead to keep our organisation and our staff informed and advised about their obligations to comply with data protection laws, to monitor compliance with those laws, to advise on data protection impact assessments, to train staff and conduct internal audits, and to be the first point of contact for supervisory authorities and for individuals whose personal data we are processing.
You can contact the Data Protection Lead if you have any questions or concerns about personal data and privacy matters, or about this Privacy Notice. Please include the words DATA PRIVACY REQUEST in the subject line of your email, or at the top of your letter.
Particulars of processing
We process personal data about our stakeholders (by which we mean current and former employees and contractors, customers and potential customers, shareholders, and any other person who has contact with us) in a range of ways, and for a range of purposes.
There is a separate Privacy Notice for HR Data that applies to current and former employees and contractors. The other categories of person about whom we process personal data are described in more detail in the Particulars of Processing that are set out in the Schedules to this Privacy Notice. The specific Schedules are as follows:
- Customer contacts and sales prospects;
- Suppliers; and
- People whose data we receive from third parties.
It may be the case that you have contact with us in more than one capacity, so please look at all the Schedules that may apply to you if you wish to know more about how we process your personal data.
Your rights as a data subject
This Section 4 sets out the rights that you have as a data subject, by reason of the UK General Data Protection Regulation and the UK Data Protection Act 2018.
You have the following rights:
- The right to request access to the personal data that we hold about you;
- The right to request rectification of the personal data that we hold about you;
- The right to request erasure of the personal data that we hold about you;
- The right to request restriction of processing about you;
- The right to object to processing; and
- The right to data portability.
You can find more details about the above rights by going to the ICO website which is at https://ico.org.uk/. If you wish to invoke any of the above rights, please notify our Data Protection Lead, using the contact details set out in Section 2 above. Please include the words DATA PRIVACY REQUEST in the subject line of your email, or at the top of your letter.
Where our processing of personal data is based on your having given consent, you have the right as a data subject to withdraw that consent at any time. If you wish to invoke this right, please notify our Data Protection Lead using the contact details set out in Section 2 above. Please include the words DATA PRIVACY REQUEST in the subject line of your email, or at the top of your letter.
You have the right to lodge a complaint with a supervisory authority. In the United Kingdom, the supervisory authority is the Office of the Information Commissioner, full contact details for which can be found at https://ico.org.uk/global/contact-us/
Schedule 1
Data subject category: personal data relating to customer contacts and sales prospects
Category of data subject | Customer contacts and sales prospects |
Categories of personal data that we process | Name
Company name Job function Email address Phone number Country |
Source of information | The personal data is collected either (a) directly from the data subject via an online form, or (b) provided through a third party such as a trade show organiser or online media owner who has the consent of the data subject or other authority to share the relevant personal data with us, or (c) from publicly-available sources such as social media.
If the relevant individual has accessed our website or clicked on a link in an email from us, their personal data may also be collected automatically by means of website cookies. For more information about our use of cookies, please refer to our Cookie Policy which can be found on the TH GARP Asset Management Ltd website. |
Purposes of the processing | The personal data is collected for marketing purposes, and for communicating with actual or prospective customers for our services. |
Lawful basis of processing | The lawful basis of processing is that at least one of the following applies:
|
Recipients of the personal data | We do not share personal data with other data controllers outside the TH GARP Asset Management Ltd group. However, we do engage third parties such as our CRM vendors to process personal data for us in connection with our marketing activities, under written contracts that comply with the controller-processor requirements mandated by applicable data protection law. |
Overseas transfers | Personal data may be shared with our overseas affiliates, and may also be stored in Cloud services where the data centres are located outside the UK or the EEA. This will only be done where we are satisfied that our contractual arrangements include sufficient safeguards for the rights and freedoms of data subjects. |
Duration of processing | We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
The appropriate retention period for any given type of personal data depends on a range of factors, including the nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure, the purposes for which it was collected, and the applicable legal requirements. |
Is the provision of this personal data a statutory or contractual requirement, or a requirement necessary to enter into a contract?
If so, is the data subject obliged to provide the personal data in question? What are the possible consequences of failure to provide such data? |
No. The personal data relating to prospective customer contacts will be needed for the purposes of the effective management of relationships with the customer as a business: it is not a pre-requisite of forming a contract with the data subject. |
Is there any automated decision-making done using the personal data (including profiling)?
If so, (a) what logic is involved, and what are the significance and envisaged consequences of the processing for the data subject? |
No. |
Plans for further processing | None other than for the reason the data was collected. |
Schedule 2
Data subject category: personal data relating to Suppliers
Category of data subject | Supplier staff, meaning the permanent, temporary or contract staff of organisations that provide goods or services to our group (including companies, partnerships, sole traders, independent contractors and freelance workers) (each a “Supplier”) |
Categories of personal data that we process | Contact details for Supplier staff including:
Bank details may also be required in order that we can pay Suppliers for any goods and services they provide. However, this is not generally regarded as personal data (except in the case of sole traders using personal bank accounts). |
Source of information | The personal data is collected either (a) directly from the data subject during the course of our business dealings with the relevant Supplier or (b) from another contact within the relevant Supplier.
If the relevant individual has accessed our website or clicked on a link in an email from us, their personal data may also be collected automatically by means of website cookies. For more information about our use of cookies, please refer to our Cookie Policy which can be found on the TH GARP Asset Management Ltd website. |
Purposes of the processing | The personal data about Supplier staff is collected and used for the purposes of doing business with the relevant Supplier, to enable us to communicate with them. |
Lawful basis of processing | The lawful basis of processing is that at least one of the following applies:
|
Recipients of the personal data | We do not share personal data with other data controllers outside the TH GARP Asset Management Ltd group. However, we may engage third parties to process personal data for us in connection with our procurement activities, under written contracts that comply with the controller-processor requirements mandated by applicable data protection law. |
Overseas transfers | Personal data may be processed outside the UK and the EEA, subject to appropriate safeguards for the rights and freedoms of data subjects. |
Duration of processing | We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
The appropriate retention period for any given type of personal data depends on a range of factors, including the nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure, the purposes for which it was collected, and the applicable legal requirements. |
Is the provision of this personal data a statutory or contractual requirement, or a requirement necessary to enter into a contract?
If so, is the data subject obliged to provide the personal data in question? What are the possible consequences of failure to provide such data? |
No. |
Is there any automated decision-making done using the personal data (including profiling)?
If so, (a) what logic is involved, and what are the significance and envisaged consequences of the processing for the data subject? |
No. |
Plans for further processing | None other than for the reason the data was collected. |
Schedule 3
Data subject category: personal data relating to people whose data we receive from third parties
Category of data subject | Individuals who are not themselves stakeholders in TH GARP Asset Management Ltd (such as current and former staff, customers, suppliers or shareholders of ours), but whose details we have been given for specific purposes such as being an emergency contact or providing employment references. |
Categories of personal data that we process | Basic contact details including:
|
Source of information | The personal data is collected only where a member of our staff or a job applicant has provided the relevant details. |
Purposes of the processing | Where personal data relates to emergency contacts, it will be used only for the purpose of contacting the data subject in the event of an accident or emergency affecting the individual concerned.
Where personal data relates to referees, it will be used only to verify the employment history and experience, and the referee’s impressions of the individual concerned. |
Lawful basis of processing | The lawful basis of processing is that at least one of the following applies:
|
Recipients of the personal data | We do not share personal data with other data controllers outside the TH GARP Asset Management Ltd group. However, we may engage third parties to process personal data for us in connection with our business activities, under written contracts that comply with the controller-processor requirements mandated by applicable data protection law. |
Overseas transfers | Personal data may be processed outside the UK and the EEA, subject to appropriate safeguards for the rights and freedoms of data subjects. |
Duration of processing | In the case of emergency contacts, the personal data will remain on file until it is updated by the relevant staff member. (Our staff are asked periodically to validate their emergency contact details.)
In all other cases, we will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. The appropriate retention period for any given type of personal data depends on a range of factors, including the nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure, the purposes for which it was collected, and the applicable legal requirements. |
Is the provision of this personal data a statutory or contractual requirement, or a requirement necessary to enter into a contract?
If so, is the data subject obliged to provide the personal data in question? What are the possible consequences of failure to provide such data? |
No. |
Is there any automated decision-making done using the personal data (including profiling)?
If so, (a) what logic is involved, and what are the significance and envisaged consequences of the processing for the data subject? |
No. |
Plans for further processing | None other than for the reason the data was collected. |