Data Privacy Notice
Who We Are
One Compliance Cyber Limited “One Compliance” are a data privacy and cyber security specialist who concentrate on increasing the robustness of our clients’ security posture which in turn allows them to mitigate against any first and third-party risks.
Contact Details of the Company
One Compliance Cyber Ltd
7 Park Row
Contact Details for Data Protection Queries
If you have any questions or concerns regarding the information we hold on you, the use of your information or would like to discuss further, please contact us at email@example.com or write to us at the address above.
Why we Collect Information (Purpose of Processing)
The processing of data and this privacy notice relates to all client information processed within One Compliance:
|Purpose||Legal Basis||Processing Special Categories of personal data|
|To enable the arrangement and fulfilment of the contract of services between us and our clients||6.1.b – processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract||Not applicable – no special category information processed|
|To contact clients and potential clients of One Compliance to provide information and updates on our current and new services||6.1.f – processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child||Not applicable – no special category information processed|
One Compliance send out marketing emails and calls to potential business clients who may benefit or have an interest in One Compliance’s services. The potential clients are sourced via publicly available sources. More information on these sources is included in this notice below.
These marketing processes allows One Compliance to foster relationships with potential clients and keep existing clients informed of our products and services. This enables us to grow our business and gain new clients.
All of our email and telephone marketing is done in line with the Privacy Electronic Communications Regulations and the Data Protections laws within the UK.
If you would like to see a copy of our LI Balancing Test, please contact firstname.lastname@example.org
How we Collect Information
We process contact and business information from our clients in order to enter into or fulfil the services accepted by the client.
These records may include:
- Basic contact details such as; name, business email address, business contact telephone number
- Business information containing names of key stakeholders within the business
- Email records
Recipients of Personal Data
Sometimes we receive contact information from our partners about their own customers who have expressed an interest in discussing our services.
Data from Publicly Available Sources
One Compliance will sometimes use publicly available sources such as LinkedIn, Facebook and Google to obtain the contact details for specific businesses that One Compliance feel would benefit from our services.
This could be details such as:
- Business email address
- Business contact number
Details of Transfers to Third Countries
One Compliance do not transfer personal information outside of the EEA. If this changes, affected data subjects will be notified and measures to protect the security of such data will be explained.
Retention Period of Your Data
You can request a copy of One Compliance’s Document Management & Retention policy from email@example.com. Our standard retention period is 3 years after the engagement is completed.
|Rights given under Data Protection||How to exercise your rights|
|The right of access||Contact us via firstname.lastname@example.org and we shall respond to you within 30 calendars days of receipt of proper identification|
|The right to rectification||Contact as above with any inaccuracies or queries|
|The right of erasure||You have the right to request that we erase your personal data where we were not entitled under the law to process it at that time, or the personal data is no longer necessary for the purpose it was collected. Contact as above with your request|
|The right to restrict processing||Contact as above with the request|
We try to meet the highest standards when collecting and using personal information. We encourage people to bring concerns to our attention and we take any complaints we receive very seriously. You can submit a complaint at any time by contacting email@example.com
You always have the right to complain to our supervisory authority. We are based in the UK and our Supervisory Authority is the UK Information Commissioners Office, and more information can be found at https://ico.org.uk/concerns or write to them at:
Information Commissioner’s Office