Data Protection Policy

Any company which stores or processes information about individuals or organization needs to be aware of the Data Protection Act (DPA) 1998. The Act states that anyone processing personal information must be register with the information commissioner’s office. As our company is different, it is important to consider how we work with data. Our organization has kept systems, procedures and policies in place to reduce the change of a data protection breach. Our policy secures the data collected, handled and stored to meet the company’s Data Protection Act. These rules apply regardless of whether data stored electronically or on paper or materials. To comply with the law, information collected is fairly stored safely and not disclosed unlawfully.

  • Store data securely: Control user access levels so only people who need access to that data can view and edit the data
  • Don’t release data to the wrong people: For instance, run a security check before talking to customers about the information to be provided.
  • Be very wary when copying or transferring data: We also Encrypt data the data before sending the information outside the business
  • Storage of information or data: We don’t store the data or information on a laptop or mini storage drive such pen drive or floppy which can be stolen or lost.
  • Responsibilities

    Everyone working in the company has some responsibility for ensuring data collected, stored and handled appropriately. Each of the team handles data in line with the policy and data protection principles. The IT Manager is responsible for ensuring ● All systems, services and equipment used for storing data meet acceptable security standards. ● He always performs regular checks and scans to ensure security hardware and software is functioning properly. ● Evaluate any third party services the company is considering using to store or process data such as cloud computing servi