Privacy and Data Protection

Visitors to our websites

When someone visits, or we use a third party service, Google Analytics, to collect standard internet log information and details of visitors behaviour patterns. We do this to find out things such as the number of visitors to our websites. This information is processed in a way which does not identify anyone. We do not allow Google to make any attempt to find out the identities of those visiting our websites. When we do collect personally identifiable information through our websites we will be up-front about this. We will make it clear when we collect Personal Information and we will explain what we intend to do with it.

Use of Data Processors

Data Processors are the parties who provide services for us. We have contracts in place with our Data Processors. This means that they cannot do anything with your personal information unless we have instructed them to do so. They will not share your personal information with any organisation unless they have our explicit permission or where there is a legal obligation to do so. They will hold the information securely and retain it for the period that we instruct.

Use of cookies

We may obtain information about your general internet usage by using a cookie file which is stored on the hard drive of your computer. Cookies contain information that is transferred to your computers hard drive. They help us to improve our websites, and to deliver a better and more personalised service. You may refuse to accept cookies by activating the setting on your browser which allows you to refuse the setting of cookies. However if you select this setting you may be unable to access certain parts of websites.

Disclosure of personal information

In many circumstances we will not disclose personal data without consent, unless legally obliged to do or as part of contractual obligations with out clients.

We may disclose personal information to the following categories of recipients.

  • To third party service providers and partners who provide Data Processing services to us.
  • To any law enforcement body, regulatory, government agency, court or other third party where we believe disclosure is necessary.
  • To enforce or apply our terms of service or other agreements or to protect ITAS and their clients.
  • To any other person with your consent to the disclosure.

Those who contact the ITAS offices

When you call the ITAS office, we collect caller line identification (CLI) information. We use this information to help improve our efficiency an effectiveness. In-bound and out-bound calls may be recorded for training and fraud prevention purposes – these are processed in ITAS’s legitimate interest.

Complaints or queries

ITAS is committed to meeting the highest standards when collecting and using personal information. For this reason, we take any complaints we receive about this very seriously. We encourage people to bring to our attention if they think that our collection or use of information is unfair, misleading or inappropriate.

If you wish to make a complaint about the way in which we have processed your personal information you can contact the Data Protection Officer (, or alternatively using our “Contact Us” details on this website. You can also contact the Information Commissioners Office in their capacity as the statutory body which overseas Data Protection law –

Use of online services at ITAS

ITAS offers various online, audit and reporting services ensuring compliance within the automotive industry. We have to hold the details of those who have requested our services in order to provide them. However, we only use these details to provide the services to the person or organisation that has requested the information and for other closely related purposes.

Our online portals record data relating to; bodyshop approval programmes, accident repair, auditing and reporting for and on behalf of its clients and their employees. In these cases ITAS is acting as a Data Processor on behalf of its clients and will undertake this duty in line with its contractual obligations.

Personal information that we collect from you, or from a client relating to you, will be retained where we have an ongoing legitimate business need to do so (for example, to provide you or our client with a service or to comply with applicable legal, tax or accounting requirements). More information on ITAS’s processing activities relating to service provision shall be made available to our clients upon engagement.

Access to personal information

ITAS tries to be as open as it can be in terms of giving people access to their personal information. Individuals can find out if we hold any personal information by making a “Subject Access Request”.

If we do hold personal information about you we will:

  • Give you a description of it
  • Tell you why we hold it
  • Tell you who it could be disclosed to
  • Let you have a copy of the information in an intelligible format
  • To make a request to ITAS for any personal information we may hold, you will need to put the request in writing to the Data Protection Officer (

Changes to this policy

Updates to this Privacy and Cookies Policy may be made from time to time and will be published to this page.

Request for further information

This field is for validation purposes and should be left unchanged.