We care about your privacy.
The General Data Protection Regulation (GDPR) will govern all businesses in the UK from the 25th May 2018. This is a European regulation which will ensure individuals rights to privacy and uphold when data has been collected, collated and processed about them.
The key pillars of GDPR are as follows:
- The right to an Individuals privacy is respected with processes and systems enabled to uphold this by design.
- The right for an individual to request all data about them is deleted.
- The right to move an individual personal data from one data controller to another.
- The right of an individual to exercise control over their own data and how this data may be used.
- Transparency for data handlers, if a breach occurs then the data protection authority and the individuals affected will be informed within 72 hours of breach discovery.
- Severe non-compliance fines for businesses who do not adhere to the (GDPR) Regulation.
What are we doing about this?
A full pre GDPR audit has been carried out at Sirus Ltd with the resulting actions being completed;
- Key compliance policies updated and shared with our teams.
- GDPR and general IT Security training sessions scheduled and implemented for our teams.
- Scoping and development of all of our systems to allow for easy extraction of individuals data in the event of a Subject Access Request (SAR) and subsequent removal if applicable.
Where is our data held?
No data processed or managed by Sirus resides outside of the EU or is shared with any 3rd parties (unless legal regulations dictate otherwise). Customer data that is held within a cloud environment resides within the EU.
If you have any queries about either GDPR or your personal data please contact us via compliance.officer@sirus-telecom.co.uk
