The Company is registered with the Information Commissioner’s Office in accordance with current Data Protection legislation.
All personal data will be processed in accordance with the Principles of the Data Protection Act 1998 which include, but are not limited to:
i. All personal data will be processed fairly and lawfully (The definition of ‘processing’ covers ‘obtaining’)
ii. Personal data will only be processed for the purpose specified
iii. Personal data will be adequate, relevant and not excessive
iv. Personal data will be accurate and where necessary kept up to date
v. Personal data will be held no longer than necessary
vi. Individuals will be allowed access to information held about them and, where appropriate, will be permitted to correct or erase it
vii. Procedures will be implemented to prevent unauthorised or accidental access to, alteration, disclosure, or loss and destruction of information.