Data Privacy


Last updated: April 2021



When interacting with us, you need to be able to trust us with your personal data. This Privacy Charter is intended to help you understand what data we collect, why we collect that data and what we do with it.

 

BNP Paribas 3 Step IT SA incorporated under the laws of France, with its registered office at 12 rue du port, 92000 Nanterre, France, registered with the Trade and Society Register under number 383 759 289, acting through its UK establishment, with registered office at Northern Cross, Basing View, Basingstoke, RG21 4HL FC036517 and BR021605 (“BNP Paribas 3 Step IT”) is aware of the importance of protecting personal data, particularly as we move into a digital economy.

 

We recognise that you care about how your personal data is collected, used and shared by us. We assure you that we collect, use, disclose and retain your personal data in accordance with the European General Data Protection Regulation.

 

We are committed to offering the best possible services to our clients, while at the same time providing you with a reliable data security policy. We value our relationship with you and have consequently decided to formalise our commitments in this Data Protection Information Notice

Our Commitments

Confidentiality

We assume that the personal data of our clients are confidential and should not be disclosed without legitimate cause.

 

Privacy by design

We are committed to taking appropriate technical and organisational measures to protect your personal data against illicit, accidental or unauthorised access to, disclosure, or loss of your personal data.

 

Liability

As a data controller and processor, we know personal data should be managed with special care. We have a duty to protect it and to implement procedures and solutions allowing you to assert your rights.

 

Responsiveness

In the event of any issues relating to your personal data, we are committed to reacting as quickly as possible to prevent and/or reduce any impact on you.

Your personal data and us

What we collect
  • Your personal details when you interact with us or when you sign up to receive any information or service
  • The data related to your activity on our website (cookies)
  • The data you give to our subsidiaries and partners
 
How we use it

We may use the personal data we collect for different reasons, including contractual or legal purposes, to deliver better services and new solutions or to send you communications that you have requested or that may be of interest to you in accordance with your activity.

 
Why we share it

We may share your data:

  • For external processing to our affiliates or other trusted businesses
  • For legal reasons

 

How we keep it secure
  • We secure your data with technical and organisational measures
  • We will inform you in the event of any incident related to your personal data
  • We limit access to your personal data to our personnel, subsidiaries or commercial partners who reasonably need access to it.

 

How long we keep it

We will keep your personal data for the length of the period required in order to comply with applicable laws and regulations or another period with regard to our operational requirements.

Your rights

Right to be forgotten / erasure

You can ask us to erase any personal data we may hold about you where such data is unnecessary, where the processing is unlawful or where you have withdrawn your consent to the processing (where applicable).

 

Right not to be submitted to automated decision

If a decision is made through a solely automated process, and that decision affects you significantly, you have the right to object to such a decision. You also have the right to access the criteria of such a decision.

 

Please be aware that we use credit scoring to help us assess credit risk and that we also use a DMM (Decision-Making Matrix) as a deal acceptance tool. This processing is legitimate to enable us to provide finance. It is not an entirely automated decision-making process as any negative answer from us will be manually confirmed by a member of our team.

 

Right to restrict processing / Right to object

You can ask us to restrict the processing of any of your personal data if you think the data is inaccurate, the processing is unlawful or you think we no longer need the data. You can object to the processing of your personal data on grounds relating to your particular situation. You have the absolute right to object to the processing of your personal data for direct marketing purposes.

 

Right to access

You can ask us for a copy of the personal data held by BNP Paribas Leasing Solutions about you.

 

Right to rectification

You can ask us to correct any incorrect personal data we may hold about you.

Exercise Your Rights

Access our contact forms for any requests related to your personal data by clicking your location below:

 

More Information