StandardsUK Compliance Obligations
As a practice that specialises in GDPR support StandardsUK are acutely aware of the wide ranging obligations of the new Data Protection legislation.
We take the privacy of our clients and their data seriously and will only process personal data when contracted to do so.
The nature of processing related to our CRM activities is limited to having access to:
- Contact details, phone/email
- Organisational details
Contractural obligations entered into with clients provides a legal basis for the processing of appropriate data associated with the nature of the relationship.
Our information security controls and practices enable secure working and storage locations for all data processed. This is client specific so that data is not transferred or allowed to migrate to alternate client folders or operational environments.
Upon the end of services all data is achieved in secure storage locations with restricted access controls to prevent unauthorised access, processing or denial of the data.
All StandardsUK client relationships are protected by documented Non Disclosure Agreements (NDAs) that restrict the communication of any part of the relationship during and post engagement.