This GDPR Policy outlines how Umbrella Alliance (“we”, “our”, “us”) collects, processes, stores, and protects personal data in compliance with the General Data Protection Regulation (GDPR). We are committed to safeguarding the privacy and rights of individuals using our website and services.
2. Data Collection and Processing
We will obtain explicit consent from individuals before collecting and processing their personal data for specific purposes. Consent will be clear, freely given, and can be withdrawn at any time.
2.2. Types of Data Collected
2.3. Purpose of Data Processing
2.4. Data Minimisation
We will only collect and process personal data that is necessary for the intended purpose. Data collected will be adequate, relevant, and limited to what is required.
3. Data Security and Storage
3.1. Data Security Measures
We implement appropriate technical and organisational measures to ensure the security and confidentiality of personal data. This includes encryption, access controls, and regular security assessments.
3.2. Data Storage Duration
We retain personal data for the duration necessary to fulfil the purposes for which it was collected, unless a longer retention period is required by law or for legitimate business purposes.
4. Data Rights and Requests
4.1. Right to Access
Individuals have the right to request access to their personal data held by us and receive information about its processing.
4.2. Right to Rectification
Individuals have the right to request correction of inaccurate or incomplete personal data.
4.3. Right to Erasure
Individuals have the right to request the erasure of their personal data under certain circumstances.
4.4. Right to Data Portability
Upon request, individuals can receive their personal data in a structured, commonly used, and machine-readable format for portability to another service provider.
4.5. Right to Withdraw Consent
Individuals have the right to withdraw their consent for processing their personal data at any time.
5. Third-Party Data Sharing
We do not share personal data with third parties without explicit consent unless required for legal or legitimate business purposes.
6. Updates to this Policy
This GDPR Policy may be updated periodically to reflect changes in our data processing practices or legal requirements. The updated policy will be posted on our website.
7. Contact Information
If you have any questions or concerns regarding this GDPR Policy or our data practices, please contact:
Name: Donna Blackwood