JASBEC BRIDGING
Introduction
Jasbec Bridging, headquartered in the UK, is committed to handling personal data in full compliance with the UK General Data Protection Regulation (GDPR), the Data Protection Act 2018, and any other relevant data privacy laws and regulations. This policy establishes our approach to data protection, detailing the procedures we follow to manage personal data responsibly and securely. By implementing this policy, we uphold the rights and privacy of our customers, business contacts, employees, and other individuals whose data we process, ensuring transparency, security, and respect for individual privacy.
Key Terms
Data Controller: Jasbec Bridging, responsible for determining the purposes and methods of processing personal data in our business operations.
Data Processor: Any third-party entity or service provider that processes personal data on behalf of Jasbec Bridging, following our guidelines and requirements.
Scope & Responsibility
This policy applies to all employees, agents, contractors, and anyone acting on behalf of Jasbec Bridging who handles personal data. All individuals involved in data processing activities are expected to follow the principles and guidelines set out in this policy to maintain the integrity and security of personal data. For any questions regarding data handling practices, individuals should consult our Data Protection Officer, who is responsible for monitoring compliance, addressing data protection concerns, and assisting with requests from data subjects.
Data Processing Principles
Lawfulness & Transparency
Jasbec Bridging ensures that all personal data is collected and processed fairly, in a transparent manner, and only with a legitimate legal basis. Data subjects are informed about how their data will be used, who it may be shared with, and the purpose of processing, maintaining an open and lawful approach to data management.Purpose Limitation
Personal data is collected for specified, explicit, and legitimate purposes. Jasbec Bridging does not process personal data in ways that are incompatible with the original purposes, ensuring data is used solely for the intended business functions and customer service needs.Data Minimisation
Jasbec Bridging collects only the minimum amount of personal data necessary for each specific purpose, ensuring that no excessive data is gathered. This approach limits data processing to only what is required to achieve the company’s operational goals.Accuracy
The company takes steps to keep all personal data accurate, up-to-date, and complete. Data subjects are encouraged to notify Jasbec Bridging of any changes to their information, and inaccurate data is corrected or removed promptly to maintain data integrity.Storage Limitation
Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, in line with legal requirements and business needs. Once data is no longer required, it is securely deleted or anonymised to protect the privacy of data subjects.Security
Jasbec Bridging implements appropriate technical and organisational measures to protect personal data from unauthorized access, accidental loss, alteration, or damage. Security protocols are regularly reviewed and updated to ensure the ongoing protection of all personal data handled by the company.
Rights of Data Subjects
Data subjects have several rights under data protection law that Jasbec Bridging upholds. These include the right to access their personal data, to rectify any inaccuracies, to request erasure of data when it is no longer necessary, to restrict or limit the processing of their data, and to object to specific types of data processing. Additionally, data subjects can request data portability, enabling them to receive their data in a structured, commonly used format. Where automated processing or profiling is involved, Jasbec Bridging ensures that such activities are limited and transparent, providing data subjects with the right to challenge and request human intervention where applicable.
Breach Notification
In the event of a data breach involving personal data, Jasbec Bridging will promptly inform affected parties as well as the Information Commissioner’s Office (ICO) when required by law. The company will assess the nature and scope of the breach and take immediate steps to contain and mitigate any potential risks to data subjects, including addressing the cause to prevent future occurrences.
Policy Implementation
This policy is effective as of 23rd October 2024 and applies to all data processing activities conducted by Jasbec Bridging. All employees, contractors, and affiliates involved in handling personal data are expected to comply fully with this policy to ensure the protection of data subjects' rights and the secure management of personal data.