GDPR Statement

  1. We collect personal information properly. 
  2. When we collect personal information, we are open about how we will use it.
  3. We use personal information responsibly.
  4. We endeavour to comply with all relevant privacy laws and adopt a positive attitude to our information assets. 
  5. All our staff have a duty to protect the personal information they have access to.
  6. We keep personal information safe. We commit to maintaining appropriate security to protect the personal information we hold. 
  7. We will update our security arrangements and monitor their effectiveness. 
  8. When we plan new systems or ways of working, we will assess and seek to minimise their impact on personal privacy.
  9. We maintain accurate, current, and relevant information. 
  10. We endeavour to ensure that the personal information we hold is accurate, current, and relevant. 
  11. When we no longer need personal information, we believe it should be deleted. 
  12. We do not intentionally collect personal information unless we have business need for it.
  13. We give people their information rights. 
  14. We take individual's information rights seriously. 
  15. We provide access to their information and we will correct personal information if it is inaccurate.
  16. We share, disclose and transfer personal information securely. 
  17. If we share personal information with a third party, we will endeavour to make sure that it remains properly protected.