GDPR Policy
GDPR Data Sharing Policy
1. Introduction and Purpose
This policy outlines how we handle personal data and share it with Growth Cog Ltd and their clients. Our commitment is to protect user privacy and comply with the General Data Protection Regulation (GDPR).
2. Lawful Basis for Data Sharing
Our lawful basis for sharing data is a contractual necessity. By using our services, users agree to share their data with Growth Cog Ltd and its clients.
3. Data Shared
We share the following types of data:
- Personal information (e.g., name, email address, phone number, any comments/messages)
4. Parties Involved
- Data Controller: this website
- Data Processor: Growth Cog Ltd
- Sub-Processors: Growth Cog Ltd’s clients
5. Data Processing Activities
We process data for the following purposes:
- Collection during user interactions
- Secure storage
- Transfer to Growth Cog Ltd and clients
- Deletion upon request
6. Security Measures
We implement robust security measures, including:
- Encryption of data in transit and at rest
- Access controls limiting data access to authorised personnel
- Regular security audits
7. Retention Period
Data is retained for as long as necessary to fulfil contractual obligations and legal requirements.
8. Individual Rights
Users have the right to:
- Access their data
- Request rectification
- Request erasure
- Object to processing
9. Consent and Opt-In
Users provide consent during account creation, form submission and/or interactions.
10. Third-Party Agreements
Growth Cog Ltd’s clients adhere to GDPR requirements. Their responsibilities are outlined in separate agreements directly with them.
11. Review and Updates
This policy will be reviewed annually.