0330 043 5464

24 hours a day 7 days a week

0330 043 5464

24 hours a day 7 days a week

Privacy Policy

Data Protection

This agreement and Terms and Conditions covers the General Data Protection Regulations and an individual’s rights as set down in the Data Protection Act 1998 and the Freedom of Information Act 2000.The company requests information from clients about them, which will include personal data, to comply with current legislation. The General Data Protection Regulations (GDPR) stipulates that anyone processing personal data must comply with six principles of good practice that are legally enforceable.

They are: -

  1. Lawful – the processing of personal data must be lawful and fair.
  2. Specified purpose – the purpose for which personal data is collected on any occasion must be specified. Explicit and legitimate. Personal data must not be processed in a manner that is incompatible with the purpose for which it was collected.
  3. Appropriate – personal data processed must be adequate, relevant and not excessive in relation to the purpose for which it was processed.
  4. Accurate – personal data processed for any of the law enforcement process must be accurate and, where necessary, and that every reasonable step must be taken to ensure that personal data that is inaccurate is erased or rectified without delay.
  5. Time bound – personal data processed must be kept for no longer than is necessary for the purpose for which it is being processed. Appropriate time limits must be established for the periodic review for the need for the continued storage of personal data for any of the law enforcement purposes.
  6. Secure – personal data must be processed in a manner that ensures appropriate security of the personal data, using appropriate technical or organisational measures. 

The company will comply with these six principles. The company is registered with the Information Commissioner’s Office (ICO) 

Subject Access Request

Individuals as data subjects, have certain rights under the General Data Protection Regulations, including a general right of access to personal data held on them, with parents exercising this right on their behalf if they are too young (under 12) to do so themselves.  If you wish to access the personal data which the company holds about you, please contact the data controller in writing: -

Benedict Funeral Directors Ltd,

1 Bedford Road,
Henlow,
Bedfordshire,
England
SG16 6DR.

When we receive a Subject Access Request, we will respond within 1 month.

Why do we hold your data, what do we do with the data we hold and who do we share it with?

To enable us to organise funerals correctly, to employ personnel and to be fully compliant with legal requirements it is important we hold certain information about our instructing clients, the deceased (note; only living people have data protection rights) and our employees. There are times when the company needs to share personal data with third parties. Personal data is sometimes required to be given to: -

  • One or more Local Authority,
  • The Coroner Service,
  • Authorities in charge of Cemeteries,
  • The Parliamentary and Health Service Ombudsman
  • Any other Ombudsman.
  • Authorities in charge of Crematoriums,
  • Registrars of Birth, Deaths and Marriages
  • Doctors and other medical personnel
  • Funeral plan companies
  • Insurance companies
  • Other third-party funeral service providers
  • Stone masons
  • Hospitals
  • Funeral vehicle service providers
  • Coffin / Casket manufactures or suppliers
  • The Media (including but not limited to, local and national newspapers)
  • Other relatives of the deceased
  • Persons enquiring about funeral dates and time
  • Persons enquiring about seeing the deceased in our Chapel Of Rest
  • Grave diggers,
  • SAIF,
  • Third party funeral software providers (including financial accounting software providers) we may use
  • HMRC,
  • Accountants acting on behalf of the company
  • Solicitors acting on behalf of the company
  • The Department of Works and Pensions,
  • Printing firms
  • Charities
  • Florists
  • Police,
  • Government agencies /departments
  • Other agencies or organisation where by sharing information /data is either a mandatory requirement in law or deemed necessary for the company to perform its duties as Undertakers and employers.
  • Embassies and or Consular
  • Airlines
  • Customs and Exercise and other relevant Government departments

In the event of non-payment of fees or any other legal action that may be believed to be required by the company against you, the company may share your personal data with its legal representatives, HM Courts and Tribunals Service, our insurers, third parties engaged to track and trace you or to trace and trace your home address or work address.

In the event of litigation against or potential litigation against us by you, your personal data may be shared with the company’s legal representatives, insurance company, accountants, private investigators appointed by the company, HMRC, HM Courts and Tribunals Service and any other party that the company feels is appropriate to defend the litigation action.

For tax accounting purposes some personal data may be provided to the company’s accountants and HMRC if they request it. 

You have the right to request all information we hold on you be removed from our records;

All such requests must be made in writing to the data controller at the address shown above. Under normal circumstances we will erase your data from our records, however there may be some circumstances whereby we may not be legally obliged to remove your personal data.

Your personal data that we share with other parties may be shared verbally, physically, by e-mail or by postal service.

The company may share your personal data with parties instructed to arbitrate in a dispute situation.

We hold personal data both physically in locked areas and electronically on servers that are password protected. We also use accounting software that is password protected.

If we suspect that data has been accessed unlawfully, we will inform the relevant parties immediately and report to the Information Commissioner’s Office within 72 hours. We will keep written records of any data breach.

The General Data Protection Regulations includes the following rights for individuals:

  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to erasure
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • The right not to be subject automated decision-making including profiling

You have the right to complain to the Information Commissioners Office (ICO) if you think there is a problem with the way you are handling your data.

You have the right to withdraw your consent to us sharing your personal data at any time.

linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram