Data Protection Officer : Sylvia Anderson
Contact : 07708 739523
Making the reasonable assumption that having asked a question via our web site enquiry page, that you are entitled to and expect an answer, we claim your consent to reply by your chosen means, e.g. email or phone. Once your enquiry has been dealt with, we assume no further consent to use your personal data, which are then removed from the online database.
Invoice details will be retained in accordance with our legal obligation in respect of tax regulations.
This section defines the policy for managing data throughout Sylvia Anderson of (sylviasschoolofmotoring.co.uk web site), hosted on a dedicated server located in the data centre belonging to Names Co Ltd.
Data held by the organisation for the purposes of carrying on its day to day business may be at risk of leakage or loss through the following means:
- Data Theft through hacking (Cyber Crime)
- Data Theft from the Cloud
- Data Theft through embezzlement
- Data Theft through hardware loss
- Physical damage to equipment
- End of equipment life risks
Data Access Policy
Under the provision of the General Data Protection Regulation, you have the right to request to view, or have removed any data held relating to you as a natural person.
This can be requested direct to the DPO.
Right to be Forgotten Policy
Under the provisions of the General Data Protection Regulation, you have the right for all data held relating to yourself to be completely and permanently erased.
Note : Removal of all data may impact on our ability to provide a service to you.
The Regulation also provides for this information being removed from all backup copies and other repositories in the organisation. To ensure that this requirement is followed, Sylvia Anderson of adopts the following practices:
- Only one copy of the database exists for each day over the past 7 days. This is held on a remote server in a secure data centre
- For disaster recovery
- The backup is a snapshot of the most recent data for each day of the week.
- Every week that backup file is overwritten with the latest data
- In case of a backup being restored, the responsible individual is required to manually reconcile any RTBF requests that may have been overridden by the restoration
Please note that the database is backed up daily with each days backup held for one week so there will be a latency of seven days between removal from the active database and removal from all backup copies.
Data Retention Policy
Your data is held until satisfactory conclusion of your enquiry or until you are no longer using our services.
Enquiry info is held in the database for no more than 3 days. This is to ensure we can respond to them even if there is an issue with email delivery. No automated processing of data is carried out on the database holding your information, other than a regular check for expired data. To ensure compliance with our policies, every day, the database is queried for entries that are greater in age than the number of days laid out in our Data Retention Terms Policy.
If found, the record and all associated data are automatically deleted from the active database. The active database is backed up daily, overwriting the previous copy from the same day the week before, so there will be a latency between deleting from the active database and the backup version. This will mean a possible delay of a maximum of seven days before final eradication of over-age data.