No data collected without your permission
Chronologic Ltd ("Chronologic", "us", "we" or "our") deals almost exclusively with businesses and organisations; we are a business-to-business (B2B) supplier. We usually deal with named individuals within the organisations that we serve and we hold a very limited amount of personal information to enable us to be able to identify and contact those named individuals solely for business purposes in their capacity as an employee or other representative of the organisation that they represent themselves as being part of.
Applicable law in the UK governing data protection includes the General Data Protection Regulation "GDPR", which means Regulation The (UK) Data Protection Act 2018 and (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
For the purposes of GDPR Chronologic acts as the Data Controller and Data Processor in respect of any personal information collected by this website.
Collection of personal data
When you make an enquiry or process a transaction using our website, we need to collect and store the following personal data: (a) the name of the organisation that you tell us that you are part of; (b) your name and job title; and (c) your contact information, including your email address and telephone number when you provide them to us.
When you process a transaction using our website, you will be asked to enter payment card information into a Sage Pay payment page, which is a hosted payment interface. We do not see, collect, process or store this payment card information, which is collected, processed and stored by Sage Pay for each individual transaction.
Collection of non-personal data
We are committed to ensuring that your personal data is secure. To prevent unauthorised access or disclosure we have put in place processes and procedures to safeguard the personal data you have provided to us online.
We may need to store your personal data in cloud-based business systems operated by third parties that we use solely in connection with running and operating our business and where such third parties operate with privacy and security policies that are acceptable to us.
Please be assured we do not sell or rent your personal data to any third party for any marketing or promotional purpose.
Links to other websites
Updating your personal data
If you wish to update the personal data that you have provided to us or to request a copy of the personal data that we hold relating to you, please contact us at email@example.com with sufficient personal data to enable us to identify you and your organisation, check our records and respond to your request by email. If you wish to write to us, please use the contact details below.
Retention of your personal data
We will only hold your personal data for as long as we need it for the purposes that you originally gave it to us. If you have expressed a wish not to be contacted by us, we may need to retain your basic contact details in order to ensure that we do not inadvertently contact you at some point in the future.
Security of your personal data
Our website is designed to protect your personal data. Your information is protected during transmission by using Secure Sockets Layer (SSL) software, which encrypts the information you input (you must use a browser that supports encryption protection); we follow the Payment Card Industry Data Security Standard (PCI DSS) with respect to payment card data; and we maintain physical, electronic and procedural safeguards for the collection, storage and disclosure of personal data.
Monitoring and or recording of communications
Monitoring or recording of your calls, emails and other communications with us for business purposes may take place in accordance with UK law.
Chronologic Ltd ("CLL") is a UK-based supplier of time and attendance equipment and services used for tracking and reporting employee working hours. The Employee Attendance Cloud (EAC) service (the "Service") is provided to CLL customers (the "Customers" or "you") through the secure website https://mytimesheets.co.uk (the "Site).
In providing the Service we will adhere to the principles set out below.
"Customer Information" means those identification details that enable Customers to subscribe to and be billed for the Service.
"Personal Information" means data relating to Staff that is provided by Customers for their use of the Site; its scope is within GDPR Article 4(1) but excludes all special categories of personal data as defined in GDPR Article 9(1).
"Staff" means the employees of our customers and includes volunteers, agents, temporary and casual workers or any other category of worker as defined by our customers when they use the Service.
"Uses" means the purpose for which the Personal Information on Staff is collected and processed. The Uses are limited to the recording, processing and provision to Customers of data related to the working hours of their Staff.
The limited scope of Personal Information held on Staff is disclosed above. We will give timely and appropriate notice to Customers if there is a change to the type of Personal Information collected, the Uses or the policy relating to third parties. Customers have the facility to update their Customer Information held by the Service.
The scope of the Service is defined and Customers can decide whether it meets their requirements. If there is any change to the type of Personal Information held or the Uses we will respect the Customer’s decision on whether to continue with or to discontinue the use of the Service.
We will collect only Customer Information and Personal Information required for the Uses and will not use it for any other purpose.
We will keep Personal Information only for as long as Customers subscribe to the Service or as permitted by law. Customer Information is held as permitted by law.
We will take appropriate steps to make sure that we maintain the accuracy of the Customer Information and Personal Information supplied to us.
We will provide ways for Customers to access their Customer Information and the Personal Information of their Staff, as required by law so that they can correct inaccuracies.
We will take appropriate physical, technical and organisational measures to protect Customer Information and Personal Information from loss, misuse, unauthorised access or disclosure, alteration and destruction.
We will not share Customer Information or Personal Information with third parties without the Customer's consent other than for the express purpose of delivering the Service requested by the Customer.
- International Transfer
Appropriate measures will be taken to protect Customer privacy, Customer Information and Personal Information that we transfer.
We will regularly review how we are meeting these privacy promises and we will provide an independent way to resolve complaints about our privacy practices.
Data encryption. Areas of this website that collect your Customer Information and Personal Information use industry-standard secure socket layer encryption (SSL); however, to take advantage of this your browser must support encryption protection (found in Internet Explorer 3.0 and above).
Customer responsibilities for data protection. The Personal Information relating to your Staff is supplied to us expressly for the use of the Service. We have no control over the accuracy or completeness of the Personal Information supplied to us and we use it
solely for the purpose of supplying the Service in accordance with the principles. As the originator of the Customer Information and the Personal Information, the Customer is a vital link in the chain of data protection. Customers have a responsibility to ensure that they:
(a) comply in all respects with the law relating to the protection of the Personal Information for the legal jurisdiction of the state, territory or country where they are located;
(b) take appropriate physical, technical and organisational measures to protect the Personal Information of their Staff from loss, misuse, unauthorised access or disclosure, alteration and destruction;
(c) provide ways for their Staff to access their Personal Information, as required by law, so that their Staff may correct inaccuracies; and
(d) provide complete and accurate Customer Information as necessary to us for Customers to be able to use the Service.
Chronologic GDPR Statement for EAC Service
In common with all UK businesses, we aim to comply with current data protection legislation and any changes to that legislation. The protection of data provided by our customers for their own use on an EAC system is considered to be as important as the protection of Chronologic's own customer data. Both are critical to the operation of our business. We take our common responsibility to protect shared data very seriously and regularly review what we can do to mitigate the risk of data loss. Read the EAC data protection statement
This policy was last modified on: 16 October 2023
To access information, ask questions about our privacy practices, or issue a complaint contact us at:
Units 20 - 24 Fourth Avenue
Westfield Industrial Estate
Radstock, BA3 4XE, United Kingdom
Telephone: +44(0)1761 410015