Personal Data Protection and Control User Agreement and Policy

This Policy

  • All products and services within our business operate under this policy.
  • The exact systems of work and level of control applied by us may vary based on the nature and volume of the personal data.
  • This policy is GDPR compliant and will be reviewed regularly as best practices develop around this legislation.

Your Personal Data

Your personal data includes anything that can identify you and personal characteristics, e.g. your name and place of work. We recognise that some of your personal data is more sensitive than others e.g. date of birth, home address etc. We will only ask for this data where necessary and the measures implemented to protect and control this data will be proportionate.

Our Commitment to You

We recognise the duties placed upon by GDPR, specifically including:

  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to erasure
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • Rights related to automated decision making and profiling

In order to communicate our understanding to you we have summarised these in to a set of principles so that you can consent to the use of personal data.

  • We will only store and use personal data where there is a genuine need to do so for security, communications and analysis for continued improvement of our systems.
  • We will maintain records of how we process your data.
  • We will respond efficiently to requests for access, control and update your personal data.
  • We will record where personal data comes from.
  • We will ensure that you data is hosted in datacentres that are reliable, compliant and secure.
  • We will not share your personal data with third parties unless you have provided explicit permission.

Terms of Reference

Spiers Group -> 'we' or 'us' or 'our'

You -> 'you or 'your'

This policy -> 'Personal Data Protection and Control User Agreement and Policy'