Skip to content

How we use your information

In its everyday business operations,NSAI Certification UK makes use of a variety of personal data about identifiable individuals, including data about -

  • Visitors to our website
  • Customers, including subscribers to our webstore and our subscription services
  • Members of standards committees
  • Traders and economic operators 
  • Other stakeholders

This privacy notice tells you what to expect when NSAI Certification UK collects personal information. 

When you contact us regarding our business operations or to purchase products and services from us, the personal data we will collect from you can include:

  • Your name
  • Your home or work address
  • Your email address and or phone number
  • Your job title
  • Your payment and delivery details, including billing and delivery addresses, credit card or bank account details
  • Usernames and passwords
  • And any other data you provide

We process data where it is necessary for the following purposes:

  • To fulfil a legal obligation with which we must comply. 
  • For the performance of a task carried out in the public interest or in the exercise of official authority, which includes:
    • responding to any comment, feedback or complaint you may send to us and to investigate any complaint received from you about our operations, products or services, and
    • monitoring use of our website and on-line platforms in order to correct or improve their use and content.
  • For the performance of a contract to which you have agreed or in order to take steps at your request prior to entering a contract.
  • To protect our legitimate interests in order to ensure we can exercise our legal rights for purposes such as legal claims, regulatory, business and legal compliance and to prevent fraud.
  • With your consent to contact you regarding relevant events, products and services, market research or studies.

We may share your personal data with our parent company in Ireland (NSAI) and its subsidiary in the United States (NSAI Inc.) to meet the purposes for which you have provided the information. We may also share your personal information with the following third parties -

  • Our agents or sub-contractors for functions carried out on our behalf such as auditing services, sales of standards, provision of prescribed functions under law and courier/delivery services.  These parties only have access to such information as necessary to perform their functions and may not use it for any other purpose.
  • Our providers of professional business services such as financial and legal advisors, accountants and auditors.
  • Our audit and oversight bodies to provide access to or disclose personal information such as is necessary for any accreditation or recognition agreement we have entered into or otherwise to protect NSAI Certification UK. 
  • Our external suppliers of personal data processing services, e.g. cloud hosting services.
  • Search engine and web analytic services 

All third parties used by us to process personal data must provide the same level of protection for your data as we do.  Your personal data may also be shared with government authorities in accordance with law or if required for compliance with law or to protect our legitimate interest.

We will process your data in accordance with our legal obligations and for so long as you instruct us to do so, where applicable.  Personal data collected is managed and retained in accordance with our Data Retention and Destruction Policy.

Use of cookies

You can read more about how we use cookies in the Cookies page of our website. 

Search engine

Our website search and decision notice search is powered by Google Analytics. Search queries and results are logged anonymously to help us improve our website and search functionality. No user-specific data is collected by either NSAI Certification UK or any third party.

NSAI e-zine

We gather statistics around email opening and clicks using industry standard technologies including clear gifs to help us monitor and improve our e-zine newsletter.  No information is shared with a third party. You can subscribe and unsubscribe from this listing at any time. 

People who email us

We will monitor any emails sent to us, including file attachments, for viruses or malicious software.  Please be aware that you have a responsibility to ensure that any email you send is lawful.

Certification

We provide certification  by written agreement. When you provide personal information as part of such agreement it will be retained for the purpose of delivering that service.  When you are listed on our customer database, either as an individual or representing a client company, we may contact you from time to time with updates and offers of other services which may be of interest to you. You can choose to unsubscribe from this listing at any time.

People who are listed on certification registers or directories

We maintain registers and directories of businesses we have certified, most of which are publicly available on our website. This information may sometimes include a contact person or by itself identify an individual as a certified person. This information is provided to allow for claims to be certified by us to the verified and promote the certification of the certified businesses.

You may contact us at any time to update or correct the personal data contained on our registers or directories.

Number registration schemes

NSAI Certification UK issues unique number sets for various registration schemes relating to international numbering set down in standards.  Where we collect personal information when processing registration scheme requests the data is collected for the purpose of providing the requester with the unique number set and we will hold the associated personal data for so long as the number remains valid or you advise us of a change of contact. 

Traders and Economic Operators

Where we have enforcement functions we collect personal information about people who are responsible for compliance with law.  This information may be shared where we determine it necessary to uphold the law and it may also be shared where we have a written agreement with another public body for such arrangement. 
Your rights to access, restrict and delete your personal data may be subject to exceptions when it is processed for these purposes.

NSAI Certification UK has organisational, physical, administrative and technical measures in place to protect the personal data we collect and process.  We monitor the measures to ensure information is secure and operating in a manner to reasonably protect the collected and processed information.  The information security systems and measures are upgraded from time to time to limit risks of unauthorised disclosure.

In the event of a data breach, NSAI Certification UK will issue breach notifications as may be required under law.

Where personal data is processed or held by NSAI Certification UK, the following rights apply with regard to your data - 

  • You can request us to provide you information on any personal data we hold about you and you can request us to provide you with a copy of that data subject to exceptions provided in law.
  • You can object to the processing or request erasure of your personal data, unless the processing is required by law.
  • Where the personal data we hold about you is incorrect or incomplete you can contact us and we will correct or update the information.
  • Where we hold your data and it is processed by automated means you may be entitled to be provided with a copy of that data in a structured machine-readable format.
  • Where you have given your consent only to us to use your personal data you can withdraw that consent at any time.  

For security purposes, NSAI Certification UK may require verification of identity before providing access to personal information. If you wish to make a Data Protection request or have a question about this policy, you can contact the NSAI Data Protection Officer by email at DataPrivacy@nsai.ie or by post to – 

Data Protection Officer
National Standards Authority of Ireland
1 Swift Square, Northwood, Santry, Dublin 09 A0E4, Ireland

We will post any changes to this privacy notice on our website in order to inform you of the personal data we collect, how it is used and the circumstances, if any, it can be disclosed.

If we decide to use personal data in a significantly different manner to that stated in this Privacy Statement or for a different purpose for which it was collected, we will notify you of such change and if appropriate you will be given a choice as to whether we use your information in the new manner.