Storing information for processing this form.Sharing information with our partners only in direct relation to your enquiry.

    Specific Privacy Section for Our Visitors – Visitors to our sites

    This is a specific privacy notice which supplements our general privacy information notice which can be viewed here. It applies in addition to all the information in our general privacy information notice.

    Our Visitors – by this we mean any visitors to our physical sites, meaning our bakeries, depots or head office. We do not collect more information than we need to fulfil our purposes.


    What kind of information we hold about our Visitors?

    We collect a variety of personal details about you including your name, job title, organisation, contact details (telephone number office address and email) from you or your organisation. We also capture your photograph. For certain types of visitor, we also collect training records, health information, proof of having watched the contractor’s video and notes created by users. We capture CCTV footage at our site. Our CCTV cameras are clearly sign posted.


    How is your personal information collected?

    We collect personal information about our Visitors directly from them either from information we already hold about the visitor, when the visit is arranged or at the time of the visit.


    How we use the personal data we collect about our Visitors?

    The situations in which we will process your personal information are listed below.

    • Managing your visit to our site
    • For health and safety purposes
    • For security purposes
    • For administration purposes
    • For monitoring and reporting purposes
    • Dealing with disputes involving you
    • To deal with insurance claims


    What is our lawful basis for processing this personal data about our visitors?

    For all our Visitors we will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:

    1. Where we need to perform the contract we have entered into with you;
    2. Where we need to comply with a legal obligation;
    3. Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests;
    4. Where we have your consent, this will be explained to you when required.

    We may also use your personal information in the following situations, which are likely to be rare:

    1. Where we need to protect your interests (or someone else’s interests).
    2. Where it is needed in the public interest.

    We need all the categories of information in the list above (see paragraph) primarily to allow us to perform our contract with you and to enable us to comply with legal obligations. In some cases, we may use your personal information to pursue legitimate interests of our own or those of third parties, provided your interests and fundamental rights do not override this. We will only use your personal information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

    Please note that we may process your personal information without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.


    Who do we share your personal data with?

    We may have to share your data with third parties, including third party service providers and other entities in the group.

    We will share your personal information with third parties only where we have a lawful basis to do so.

    “Third parties” includes third-party service providers (including contractors and designated agents) and other entities within our group. The following activities in respect of our visitors are currently carried out by third-party service providers: IT system providers, including visitor access control systems, accident and injury systems and advisers, legal advisers, insurers, other relevant professional advisers.

    All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your personal information in line with our policies. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions.

    Changes to this Specific Privacy Section

    We reserve the right to update this specific privacy section at any time. This specific privacy section was last updated in May 2018.