Data Protection Policy

Introduction

Cut Edge Corrosion UK is dedicated to safeguarding the privacy of our customers, employees, and partners. This Data Protection Policy outlines our approach to data protection to ensure compliance with applicable laws and regulations, particularly the General Data Protection Regulation (GDPR).

Policy Aim

This policy aims to ensure Cut Edge Corrosion UK:

• Complies with data protection laws and follows best practices.
• Protects the rights of staff, customers, and partners.
• Is transparent about how it stores and processes individuals' data.
• Shields itself from the risks of a data breach.

Scope

This policy applies to all employees, contractors, and third parties who have access to data held by Cut Edge Corrosion UK.

Data Protection Principles

Cut Edge Corrosion UK adheres to the following principles when handling personal data:

• Lawfulness, Fairness, and Transparency: Data is processed legally, fairly, and transparently.
• Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes.
• Data Minimisation: Data collected is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.
• Accuracy: Data is accurate and, where necessary, kept up to date.
• Storage Limitation: Data is kept in a form which permits identification of data subjects for no longer than necessary.
• Integrity and Confidentiality: Data is processed in a manner ensuring appropriate security, including protection against unauthorised or unlawful processing and against accidental loss, destruction, or damage.

Individual Rights

Under the GDPR, individuals have:

• The right to be informed about the collection and use of their personal data.
• The right of access to their personal data.
• The right to rectification.
• The right to erasure.
• The right to restrict processing.
• The right to data portability.
• The right to object to processing.
• Rights in relation to automated decision-making and profiling.

Data Subject Access Requests

Individuals have the right to access their personal data and supplementary information. Cut Edge Corrosion UK will provide a copy of the information free of charge within one month of the request.

Data Protection Officer

Cut Edge Corrosion UK has appointed a Data Protection Officer (DPO) to oversee compliance with this policy. The DPO can be contacted at:

• Email: dpo@cutedgecorrosionuk.com
• Address: Unit A3, Marks Hall Farm, White Roding, Dunmow, Essex, CM6 1RT

Data Security

• We have implemented measures to ensure the confidentiality, integrity, and availability of systems processing personal data.
• We assess the effectiveness of these security measures through regular testing and evaluation.

Breach Notification

In the event of a data breach, Cut Edge Corrosion UK will notify the relevant supervisory authority within 72 hours of becoming aware of the incident, where feasible.

Training And Awareness

All employees who have access to personal data will receive training on this policy and their data protection responsibilities.

Review And Updates

This policy will be reviewed annually or as necessary to ensure it remains effective and compliant with the law.

Conclusion

Cut Edge Corrosion UK is committed to ensuring personal data is protected and handled with the utmost care and respect in accordance with legal obligations.