Data Protection Policy
The company regards the lawful and correct treatment of personal information as very important to the successful and efficient performance of its functions, and to maintain confidence between those with whom it deals.
To this end, Oytise PiD fully endorses and adheres to the Principles of Data Protection, as set out in the Data Protection Act 1998.
The purpose of this policy is to ensure that the employees are clear about the purpose and principles of Data Protection and to ensure that it has guidelines and procedures in place which are consistently followed.
Failure to adhere to the Data Protection Act 1998 is unlawful and could result in legal action being taken against the company or employees.
The Data Protection Act 1998 regulates the processing of information relating to living and identifiable individuals. This includes the obtaining, holding, using or disclosing of such information, and covers computerised records as well as manual filing systems.
Data users must comply with the data protection principles of good practice which underpin the Act. To comply with the law, information must be collected and used fairly, stored safely and not disclosed to any other person unlawfully. To do this the company follows the eight Data Protection Principles outlined in the Data Protection Act 1998, which are summarised below:
Personal data will be processed fairly and lawfully
Data will only be collected and used for specified purposes
Data will be adequate, relevant and not excessive
Data will be accurate and up to date
Data will not be held any longer than necessary
Data subject’s rights will be respected
Data will be kept safe from unauthorised access, accidental loss or damage