The main legislation governing data protection is the Data Protection Act 1998 (DPA) and the Investigatory Powers Act 2016 (IPA). The DPA implements the EU Data Protection Directive and both aim to give individuals rights in connection with the processing of manual and computerised personal data about them.
In December 2015 the EU Commission, Parliament and the Council of Ministers reached agreement on the General Data Protection Regulation (GDPR). In May 2017 the ICO published a plan, committing to the implementation of GDPR which becomes enforceable from 25th May 2018.
What is Personal Data?
Personal data is information that can be used to help identify an individual, such as name, address, phone number or email address.
Why do we collect it?
The information/ data that we collect is gathered and retained for specified, explicit and legitimate purposes.
What do we do with the information?
We will only use the information given to us to fulfil your requests. We may contact you in response to a specific enquiry. The data is stored securely with authorised access only. The information is held on our HR software
We are committed to ensuring that your information is secure. We place a great importance on the security of all personally identifiable information. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect, such as PC folder restriction, firewalls and secure shredding. Only authorised personnel are able to access personal information, access to this information is either password protected or encrypted and any data transferred over the internet to BOL is done through a secure connection.
If you believe that we hold any incomplete or inaccurate data about you, you have the right to ask us to correct and or complete the information and we will strive to update / correct it as quickly as possible.