General Data Policy
General Data Protection Regulation 2018
Data protection laws in the UK are changing with effect from 25 May 2018 when the General Data Protection Regulation 2018 (“GDPR”) will replace the Data Protection Act 1998. GDPR provides greater protection to individuals whose data is being processed by organisations located in the EU and, in certain circumstances, by organisations based outside of the EU. It applies to Danish Design Pet Products Ltd and the information we process about our employees, customers and suppliers.
GDPR places a number of new and extended requirements on organisations. Danish Design is committed to ensuring the personal data you provide to us is protected in line with the requirements of GDPR, whether you are our customer, supplier, employee or other contact.
Danish Design Approach
Danish Design is committed to providing high standards of data security, privacy and transparency. We are taking steps to achieve GDPR compliance and aim to be compliant with the key principles of GDPR by 25 May 2018.
Data Retention and Security
We have retention and destruction policies and procedures to ensure all personal data is deleted or destroyed at the appropriate date.
We have the appropriate security in place in respect of the personal data we process, taking into account the volume and types of personal data we process and security standards that appropriate in the industry in which we work. These measures include ensuring documents containing personal data are appropriately locked down, password protected and available only to individuals who need to see the documents.
We will only share details (name & address’s) passed on from our customers for direct despatch. We will only share these details with the relevant carrier and have received and recorded their information security statements.
Record of Processing
We will keep a record of the personal data we process and any issues or developments that may arise in relation to the personal data or processing.
We are updating our employee contracts and our internal policies and procedures to reflect the requirements of GDPR. We will also ensure key employees are provided with appropriate data protection and GDPR training where required.
If you require any further information regarding our data processing policy please contact us at firstname.lastname@example.org