Privacy, data protection & the GDPR

The GDPR

From the 25 May 2018 organisations, including ours, who control and process personal data must comply with new EU legislation known as the General Data Protection Regulation or GDPR.

The rules contained within the GDPR replace those within the Data Protection Act 1998 offering enhanced rights and security to individuals and placing obligations on those who control and process that data to do so lawfully and securely.

When we use your personal data we are regulated under the GDPR which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controller’ of that personal data for the purposes of the GDPR.

How and why we collect, use, store and share your personal data

Our use of your personal data is subject to your instructions, the GDPR, other relevant UK and EU legislation and our professional duty of confidentiality. We take your privacy very seriously and as such have systems and procedures in place to ensure we adhere to current legislation.

To find out more about how and why we collect, use, store and share your personal data you can access our full Privacy Policy by clicking on the link or you can request a written or e-mail copy by contacting our Data Protection point of contact using the details at the bottom of this page.

Please read this privacy policy carefully.  It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in the event you have a complaint

Use of our website is governed by a separate privacy policy designed specifically for that purpose.  You can access it here at our Website Privacy Policy.

During the recruitment and selection process it is necessary for us to collect, store and sometimes share your personal information.  Our privacy notice, specifically designed for recruitment can be found at our careers page by clicking on the link below.

Careers

If you are applying for a role, or thinking about making an application you should read this notice.

Data protection point of contact details:

Scott Garson, Practice Manager, Viaduct House, CARLISLE CA3 8EZ

Phone:  01228 516666

E-mail: scott.garson@cartmells.co.uk

The supervisory authority in the UK is the Information Commissioner’s Office (ICO).  You can find out further information on who the ICO are and what they do here https://ico.org.uk/