GDPR Policy - Digital Planet

GDPR Policy

GDPR Policy

This GDPR Policy (“Policy”) describes how Digital Planet London Ltd (“Company,” “we,” or “us”) collects, processes, and protects personal data in accordance with the requirements of the General Data Protection Regulation (GDPR).

Lawful Basis for Processing: We will only process personal data when we have a lawful basis to do so, such as the necessity of processing for the performance of a contract, compliance with legal obligations, protection of vital interests, consent, or legitimate interests pursued by the Company.

Types of Personal Data Collected: We may collect personal data, including but not limited to, names, contact information, email addresses, and any additional data voluntarily provided by individuals.

Purposes of Processing: We process personal data for the following purposes: i. Provision of requested services or information; ii. Communication with individuals regarding our services, updates, or inquiries; iii. Compliance with legal obligations; iv. Protection of our legitimate interests, including the security and improvement of our services; v. Marketing activities with explicit consent or as permitted by applicable laws.

Data Subject Rights: Individuals have the following rights regarding their personal data: i. Right to access: Individuals can request access to their personal data held by the Company. ii. Right to rectification: Individuals can request the correction or updating of their inaccurate or incomplete personal data. iii. Right to erasure: Individuals can request the deletion of their personal data under certain circumstances. iv. Right to restrict processing: Individuals can request the restriction of the processing of their personal data under certain circumstances. v. Right to data portability: Individuals can request the transfer of their personal data to another controller in a structured, commonly used, and machine-readable format. vi. Right to object: Individuals can object to the processing of their personal data in certain situations. vii. Right to withdraw consent: Individuals have the right to withdraw their consent at any time, where applicable.

Data Security: We implement appropriate technical and organizational measures to protect personal data from unauthorized access, accidental loss, destruction, or damage. We conduct regular risk assessments and take steps to ensure the ongoing confidentiality, integrity, availability, and resilience of our data processing activities.

Data Transfers: We may transfer personal data to third-party service providers or affiliates located in countries outside the European Economic Area (EEA) only if adequate safeguards are in place to protect the personal data, as required by the GDPR.

Data Retention: We retain personal data for as long as necessary to fulfill the purposes for which it was collected unless a longer retention period is required or permitted by law.

Data Breach Notification: In the event of a data breach that poses a risk to individuals’ rights and freedoms, we will notify the appropriate supervisory authority and affected individuals without undue delay, as required by the GDPR.

Privacy by Design and Default: We implement privacy measures at the onset of new projects or systems and ensure that personal data processing is limited to what is necessary for the intended purpose.

Updates to this Policy: We may update this Policy periodically to reflect changes in our privacy practices or legal requirements. We encourage individuals to review this Policy regularly.

Contact Us: If you have any questions, concerns, or requests regarding this Policy or our data processing practices, please contact us using the information provided below.

Address: 11 Beaufort Court, Admirals Way, Canary Wharf | London | E14 9XL

Contact: +442032390392