General Data Protection Regulation
GDPR is new European Union legislation that comes into force in March 2018 to regulate the use and storage of personal data by private and public sector organisations within member states of the European Union. For the most part it does not differ from existing data protection law in the UK. The prime purpose of the legislation is to regulate businesses selling to consumers and not the business to business activity carried out by AIT. However, like most EU legislation, GDPR has been deliberately drafted in such way to allow individual EU states to implement it according to local conditions. This means that its rulings are often ambiguous and open to different interpretations. The senior management team at AIT has reviewed our data protection policies in line with GDPR and taken the following actions.
AIT GDPR Statement
AIT Partnership Group Ltd is committed to protecting all its customers, suppliers and team members by maintaining best practice data protection processes in line with all UK and EU law including GDPR.
AIT is engaged in selling goods and services to corporate and public sector enterprises and all marketing activity is directed at these enterprises. In the legitimate pursuit of this business AIT may hold data on individuals working in these organisations. This data is limited to name, job title, organization email address and telephone numbers. We do not hold personal data such as home addresses or any personal credit card or bank details.
AIT has undertaken a review of its data protection policy and implemented the following;
• Reviewed what data we hold
• Identified how this data was collected
• Reviewed how we communicate that this data is only used for the legitimate pursuit of business to business activity
• Reviewed our processes for responding to requests to delete, amend or restrict data.
• Reviewed our processes for providing access to data when legitimate requests are made
• Reviewed our legitimate use of data for business to business activity
• Reviewed our use of data and in accordance with Article 6 , 1 (f) of the GDPR have considered that AIT meets at least 1 of the 6 criteria deemed necessary for processing. The criteria listed in the GDPR are; a) consent, b) the performance of a contract, c) legal compliance, d) protection of the vital interests of an individual, e) performance of a public or official task, f) legitimate interests.
• Where AIT has a legitimate interest and freedom to conduct a business, as defined in the Charter of Fundamental Rights of the European Union and point (4) of the GDPR this is deemed sufficient to process data.
• Reviewed our security and ability to prevent, detect and report data breaches in line with GDPR and ISO27001
• Reviewed the need for a Data Protection Impact Assessment
• Appointed a Data Protection Office
• Reviewed our international data
IP Addresses and Cookies
We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration.
A cookie is a piece of information that is stored on your computer’s hard drive which records how you have used a website. This means that when you go back to that website, it can give you tailored options based on the information it has stored about your last visit.
For information about how to disable cookies in your browser please visit the www.aboutcookies.org website.
Most browsers automatically accept cookies. You can prevent cookies from being stored on your computer or device by setting your browser to not accept cookies. Some browsers provide a mode where cookies are always deleted after a visit.
Have any questions?
Feel free to get in touch
If you have any questions please get in touch and we will be happy to help.