Data Protection Principles / Compliance with GDPR (EU) May 2018 – Data Protection Act Schedule 1
Personal data shall be processed fairly and lawfully and, in particular, shall not be processed unless –
(a) at least one of the conditions in Schedule 2 is met, and
(b) in the case of sensitive personal data, at least one of the conditions in Schedule 3 is also met.
Personal data shall be obtained only for one or more specified and lawful purposes, and shall not be further processed in any manner incompatible with that purpose or those purposes.
Personal data shall be adequate, relevant and not excessive in relation to the purpose or purposes for which they are processed.
Personal data shall be accurate and, where necessary, kept up to date.
Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
Personal data shall be processed in accordance with the rights of data subjects under this Act.
Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.
Personal data shall not be transferred to a country or territory outside the European Economic Area unless that country or territory ensures an adequate level of protection for the rights and freedoms of data subjects in relation to the processing of personal data.
Cookies & Monitoring
Monitoring is important for your consumers to understand what information you are collecting from visits. It is important that you stress the reasons why you are monitoring this traffic. Remember to mention any 3rd party services you are using that may collect cookies also, such as Google Analytics.
Strictly necessary cookies – These are cookies that are essential to the operation of our website.
Analytical / Performance cookies (Google Analytics) – These cookies allow us to recognise and count the number of visitors to our website.
Functionality cookies – These cookies are used to recognise you when you return to our website.
Targeting Cookies – These cookies record your visit to our website, the pages you have visited and the links you have followed.
We may monitor traffic to our site and collect the following information: The IP address of your computer. The referring website from which you have got to our website from.
The reasons for this are: To make ongoing improvements to our website based on this data. To see our most popular sources of business.
We may disclose your personal data:
If we sell our business.
To agents and service providers.
In cases where we are required by law to pass on information or if we believe action is necessary for fraud, cybercrime or to protect the website, rights, personal safety of person/s.
We may also disclose aggregate statistics about visitors to our website (customers and sales) in order to describe our services to prospective partners (advertisers, sponsors) and other reputable third parties and for other lawful purposes, but these statistics will include no personally identifiable information.
If you are concerned about your data, you have the right, subject to the payment of a small fee to request access to personal data which we may hold or process about you.