Data Protection Policy Statement
We shall collect, hold and process personal data in accordance with the provisions of the Data Protection Act 1998. These provisions apply to personal data held on an employee’s personal file or on any associated or computerized record.
Where data is held under the provision of the Data Protection Act 1998 we will ensure that personal data is:
- Fairly and lawfully processed
- Processed for specified purposes
- Adequate, relevant and not excessive
- Not kept longer than necessary
- Processed in accordance with the individuals rights
- Secure and backed up remotely
- Not transferred to countries without adequate protection
Where consent is required, we will obtain your consent before processing your data.
You are entitled, upon request, to be informed whether personal data about you is being processed, and to be provided with a description of the data, any information available as to its source(if known), the purpose for which it is being processed, and the details of the recipients to whom it is being disclosed. We will provide this information upon request although be reserve the right to make a charge for provide this information. In certain circumstances and upon request, we will stop processing personal data about you if it is likely to cause substantial damage or distress to you or someone else. Any requests relating to the above should be made in writing to our Data Protection Officer Jo Lodge.
We will endeavour not to make decisions that significantly affect you which are based solely on automatic processing of personal data. However, where such a decision was made, you will be informed of the way in which the decision was made and be given an opportunity to make representations to challenge the decision with a view to ensuring that a correct and fair decision.
You are required to make yourself familiar with and follow our Data Protection Policy and Code of Practice, which sets out the way in which we require personal data to be treated in order to comply with the law. Our Data Protection Policy and Code of Practice are available on the internet and copies can be obtained from the Data Protection Officer. Personal data is confidence and is held solely for the purpose of carrying out company business. Breach of our Data Protection Policy or Code of Practice may amount to misconduct and result in disciplinary action. Persistent breaches or a serious breach may result in dismissal.
We will ensure that appropriate measures are adopted to guard against unauthorized and unlawful processing, or the accidental loss, destruction of or damage to data.
The subject of data protection is a complicated one. If you require guidance or assistance you should contact our Data Protection Officer who will be pleased to help you and answer any queries that you may have.