GDPR Policy

GDPR Data Sharing Policy

1. Introduction and Purpose

This policy outlines how we handle personal data and share it with Growth Cog Ltd and their clients. Our commitment is to protect user privacy and comply with the General Data Protection Regulation (GDPR).

2. Lawful Basis for Data Sharing

Our lawful basis for sharing data is a contractual necessity. By using our services, users agree to share their data with Growth Cog Ltd and its clients.

3. Data Shared

We share the following types of data:

  • Personal information (e.g., name, email address, phone number, any comments/messages)

4. Parties Involved

  • Data Controller: this website
  • Data Processor: Growth Cog Ltd
  • Sub-Processors: Growth Cog Ltd’s clients

5. Data Processing Activities

We process data for the following purposes:

  • Collection during user interactions
  • Secure storage
  • Transfer to Growth Cog Ltd and clients
  • Deletion upon request

6. Security Measures

We implement robust security measures, including:

  • Encryption of data in transit and at rest
  • Access controls limiting data access to authorised personnel
  • Regular security audits

7. Retention Period

Data is retained for as long as necessary to fulfil contractual obligations and legal requirements.

8. Individual Rights

Users have the right to:

  • Access their data
  • Request rectification
  • Request erasure
  • Object to processing

9. Consent and Opt-In

Users provide consent during account creation, form submission and/or interactions.

10. Third-Party Agreements

Growth Cog Ltd’s clients adhere to GDPR requirements. Their responsibilities are outlined in separate agreements directly with them.

11. Review and Updates

This policy will be reviewed annually.