At Oasis Estate Agents, we are passionate about safeguarding the personal data of all stakeholders - our valued customers, dedicated employees, and trusted partners. We believe that data protection is not just a legal requirement, but a moral imperative. That's why we go above and beyond to implement the most robust and state-of-the-art security measures to protect all personal data entrusted to us. We are committed to compliance with all relevant laws and regulations and will only use personal data for lawful business purposes. We strive to ensure that the data we collect is accurate, complete, and up-to-date, and that it is kept safe from unauthorised access, loss or damage. Data protection is at the core of our values, and we believe everyone has a right to privacy.
Oasis Estate Agents must look after your personal information by law. The main legislation that applies to protecting your information is:
General Data Protection Regulations (UK) (GDPR UK)
Data Protection Act 2018 (DPA)
Human Rights Act 1998 (Article 8) (HRA)
Privacy and Electronic Communications Regulations 2003 & 2011 (PECR)
Money Laundering Regulations 2017
Proceeds of Crime Act 2002
The Data Protection, Privacy and Electronic Communications (Amendments etc.)(EU Exit) Regs 2019
Telecommunications (Lawful Business Practice) (Interception of Communications) Regulations 2000
Regulation of Investigatory Powers Act 2000 (RIPA)
This Privacy Notice covers use of personal information as defined in GDPR UK & the Data Protection Act 2018.
Personal data. This is information, or any combination of separate pieces of information, that could be used to identify you. This includes your name, address, contact details etc.
When you enquire or register for products and services provided by Oasis Estate Agents we may collect personal information from a variety of sources.
The majority of the personal information we collect will have been provided by you during the course of your relationship with us either through face to face contact, by telephone, email or electronic communication such as messaging, on-line forms or emails.
We do not offer any products or services to children (defined as under the age of 16 in GDPR UK). In some circumstances, for example a mortgage application, we may be required by the mortgage provider to collect the names and dates of birth your dependent children or other adults who may reside with you.
We are required to keep your information for as long as is reasonably necessary to fulfil our legal and regulatory obligations. We have a Retention and Destruction Schedule to ensure we comply with the relevant legislation when processing your information.
For lettings we keep your information for 6 years + 1 after you have stopped using our service.
For property sales we keep your information for 6 years + 1 year after the sale has been completed.
You have a number of rights concerning the personal information we process about you.
You have the right to:
ask us for access to a copy of your personal information we hold about you. This is called a data subject access request. We may ask you to provide ID to verify your identity.
ask us to correct your personal information if it is inaccurate. We may ask you to provide confirmation to ensure the information we hold is accurate.
ask us to delete your personal information. We are unable to delete your information if the law requires us to keep it for a statutory period or there is a lawful reason we must keep the information. We will always investigate any request and advise you, if we are unable to erase your data.
withdraw your consent to use your personal information. Where you have provided consent for our processing of your personal data, you may withdraw that consent at any time by simply contacting the branch or team you have been speaking to.
ask us to restrict the use of your personal data, including direct marketing.
object to our use of your personal data for our legitimate business interests. You have an absolute right to object to our use of your data for direct marketing.object to an automated decision.
We store your personal information on our electronic computer systems and in our paper filing systems. In accordance with the law we have strict security procedures to ensure that personal information is not damaged, destroyed or misused, and to prevent unauthorised access to your information. We have an internal breach reporting system to record all information security incidents and breaches. Serious data breaches are reported to the ICO within 72 hours, in accordance with the GDPR UK and the Data Protection Act 2018.
Updates to our Privacy Notice We reserve the right to amend and update this Privacy Notice as required, therefore it is advisable you review this notice at regular intervals.