CKUK Media Ltd Privacy Statement
The Data Controller for the Company is Christopher Kent, Director CKUK Media Ltd
The Data Controller may be contacted at CKUK Media Ltd, The Courtyard, Selby Road, London, W5 LX. Tel: 020 8991 1855 Email: email@example.com
Data Subjects of the business:
Clients, Business Contacts, Agents and Freelancers employed
Types of Personal Data include the following:
Name, Trading Name, Telephone Number, Address, Email Address, Payment Details
The Data is used to discuss business opportunities with former, repeat and new clients and to engage in negotiation, contractual agreement and fulfilment of any contracted services. It may also be used to update clients on working matters relating to CKUK Media Ltd
The lawful basis identified for the processing of such data is Legitimate Business Interests
How Data Is Obtained
All Data is obtained directly from the Data Subjects listed above
Data is never shared with anyone other than the relevant Data Subject except under the instruction of or with the explicit agreement of the Data Subject or in order to comply with legal obligations.
The CKUK Media Ltd data retention policy is to review all data held on individuals at least every three years and remove data where we no longer have a legitimate reason to keep it.
Where you have withdrawn your consent for us to use your data for a particular purpose (e.g. unsubscribed from a mailing list) we may retain some of your data for up to two years in order to preserve a record of your consent having been withdrawn.
Data relating to payments and financial information which the company is obliged to retain to meet its legal obligations (such as HMRC) will be retained for the minimum period specified by the relevant Regulations (e.g. 6 years for HMRC).
The Company, because of its size and the nature of its collection and use of data does not deem it necessary to use encryption. Almost all the data retained is readily available from public and other sources and the nature of the data is deemed to be extremely low risk in terms of harm or damage. The Company will protect data using appropriate protection software.
We sometimes use third party services to process and store data (e.g. Quickbooks, Intuit, Google Drive, MS Outlook). We will always make sure any third parties we use are reputable, secure, and process your data in accordance with your rights under GDPR. We verify that whenever international data transfers are involved with any third party, these will be compliant with the GDPR requirement.
What rights do you have?
Under the GDPR, you have the following rights over your data and its use:
· The right to be informed about what data we are collecting on you and how we will use it
· The right of access – you can ask to see the data we hold on you
· The right to rectification – you can ask that we update or correct your data
· The right to object – you can ask that we stop using your data for a particular purpose
· The right to erasure – you can ask us to delete the data we hold on you
· The right to restrict processing – you can ask that we temporarily stop using your data while the reason for its use or its accuracy are investigated
· Though unlikely to apply to the data we hold and process on you, you also have rights related to portability and automated decision making (including profiling)
All requests related to your rights should be made to the Data Controller Christopher Kent at firstname.lastname@example.org. We will respond within one month.
You can find out more about your rights on the Information Commissioner’s Office website
What will we do if anything changes?
If we make changes to our privacy statements or processes we will post the changes here. Where the changes are significant, we may also choose to email individuals affected with the new details. Where required by law, will we ask for your consent to continue processing your data after these changes are made.