Storyfinder Privacy Policy
At Asda we recognise the value of our colleagues. Therefore, we place great importance in managing your information in accordance with our basic belief of respect for the individual.
This notice applies to all users of Storyfinder and describes the collection, use, and sharing of information on Storyfinder as well as the choices you have with respect to your information.
What is Personal Information?
Personal Information (also known as personal data) is any information that identifies someone and any information that relates to that identified person. For example, if you are an Asda Colleague, your name and email address are information that identifies you, and your length or service is information that relates to you.
Who is the Controller of your Personal Information?
The Controller of your Personal Information is Asda Stores Limited (with registered address at Asda House, Great Wilson Street, Leeds, LS11 5AD) unless we tell you otherwise. Contact our Data Protection Officer if you have any questions or concerns about our handling of your Personal Information, or if you wish to make a complaint.
What Personal Information do we collect about you and how do we use it?
Personal Information
Processing Purpose
Legal Basis for Processing
-
Name
-
Email Address
-
Colleague ID
Registering your account and enabling your access
Necessary for performance of the contract between you and us.
Optional information you can provide:
-
Profile photo
-
Telephone number
-
Twitter handle
-
Short personal introduction
Maintaining an online user profile
Your consent.
-
IP address
-
device ID
-
session ID
-
cookie information
Online identifiers for analytics purposes, to help us understand and support how the service is being used to help the improvement of services, websites and communications.
To meet our legitimate interests to run our business effectively by understanding how you are using our products and services and interacting with our communications and how to improve this offering.
-
Interaction history
Online identifiers regarding your interaction history to maintain, develop and test the service.
To meet our legitimate interests to run our business effectively by ensuring our colleagues get the best experience online.
Where do we collect your Personal Information from?
We collect the Personal Information on Storyfinder either directly from you or using information held on your colleague record (such as your name, email address and colleague ID).
Who do we share it with?
We have controls to limit access to your Personal Information to:
a) Individual colleagues who need it to do their job, such as managing your Storyfinder account.
b) Business partners who need it to provide the Storyfinder service.
If requested, and where it is required or permitted by law, we may provide Information to:
a) Official bodies, such as government agencies, local authorities, regulators and the police, who are authorised to request Information where it is necessary for their lawful purposes;
b) Asda’s advisers, including lawyers, insurers, accountants and auditors;
c) Other organisations such as law firms or insurance companies acting on behalf of individuals, who may request evidence containing Personal Information, to support a claim.
Where is your Personal Information kept, processed and accessed from?
Your Personal Information is securely stored and processed on servers hosted in the UK and EU.
How long will we keep your Personal Information for?
Information on Storyfinder is regularly refreshed and information which is no longer relevant or required is regularly deleted. Your personal information relating to your employment will be kept for no longer than 7 years beyond the end of your employment with us unless otherwise stated.
How do we protect and secure your Personal Information?
We use security measures, including physical, administrative, and technical safeguards to protect the confidentiality of your Personal Information. These measures include encryption, security certificates, access controls, information security technologies, policies, procedures and other information security measures to help protect your Information.
When designing or implementing new computer systems and processes we look at ways to identify and mitigate potential security risks and then monitor and test our security systems to help protect your Personal Information.
How can I exercise my Privacy Rights?
This Privacy Notice tells you all about how we collect and process your Personal Information, and why we are allowed to do so. If you want to know more about your Privacy Rights and how to make a Rights Request, get in touch with the Privacy Team at dataprotection@asda.co.uk
04.05.2020