Get in touch
Surrey, GU19 5AF
Call or Email Us
Tel: +44 (0)1276 478 940
GDPR Compliance Statement
The General Data Protection Regulation (GDPR) is to be in effect as of 25th May 2018. The GDPR is designed to strengthen the security of personal data in the EU and will be the replacement of the European Privacy Directive and national legislations accordingly.
Anderson Young welcomes the arrival of the GDPR and all staff and contractors are familiar with GDPR. This means all members of the business has an ability to apply a high level of data protection and security in relation to personal data that our employees, customers and third parties trust us with.
When processing data, Anderson Young undertake the following procedures to make sure we protect information:
The processing is lawful, fair and transparent.
We are transparent about what the data is being used for.
Any data is destroyed as soon as it is requested without hesitation.
Any data which is collected is for a specific purpose and used for that purpose only.
The data is necessary for the purpose, and that purpose solely without written authorisation from the candidate/client/employee to use elsewhere.
The data we process is to be accurate and kept up to date.
Any data processed is not kept for longer than necessary.
The data is kept safe and secure and that no personal data is transferred outside of the EU.
As a business, Anderson Young now stores people's information in commonly used formats so that we can move a person's data to another organisation (free of charge) if the person requests it. The data controller is to do this within one month.
Although we have already implemented a consistent level of data protection and security in our procedures, our aim is to be fully GDPR compliant before May 2018. This includes keeping internal records of all our data processing activities and having a process to accommodate the rights of our data subjects.
All our storage systems are encrypted and secure. They are also GDPR compliant with procedures in place.
We do have a notification process in place in the event of any breach.
Any GDPR related questions can be addressed to Anderson Young’s Data Protection Officer at firstname.lastname@example.org