GDPR Compliance Statement

IMPORTANT NOTICE
Privacy @ BLOCK7
Last Revised: January 2022

 

Introduction and Definitions

BLOCK7 Limited place a high priority on protecting and managing data in accordance with the current General Data Protection Regulation (GDPR). As a business, We remain committed to exacting standards of information security, privacy, and transparency.

This GDPR Compliance Statement (also referred to as the (“GDPR Notice”) provides information on the regulation collection, use, and sharing (collectively referred to “Processing” or “Process”)  as of Personal Information by BLOCK7 Limited. Process also means any operation performed on information about You, including to collect, record, organise, structure, store, alter, use, transfer, destroy or otherwise make available.

BLOCK7 Limited owner and operator of BLOCK7.co.uk website (“Site”), is committed to protecting Your privacy. Where We  refer to Processing Your Personal Data (where “Personal Data”) has the meanings as defined in the UK data protection legislation according to the Data Protection Act 2018, and the updated UK GDPR),this  includes handling, collecting, protecting, and storing it.

Our users (“You”) include individuals who visit (“Visitors”) the Site, individuals who sign up (“Customers”) to use the Site and the related applications, products, and services, and individuals who register to attend (“Attendees”) online demos, seminars, or corporate events.

In this GDPR Notice references to (“We,” “Us,” “Our” or “BLOCK7”) are references to BLOCK7 Limited.

 

What is the GDPR

General Data Protection Regulation (GDPR).

The new EU General Data Protection Regulation (“GDPR”) came into force on 25 May 2018 (including in the UK regardless of its decision to leave the EU) and will impact every organisation which holds or processes Personal Data. It introduced new responsibilities, including the need to demonstrate compliance, more stringent enforcement and substantially increased penalties than the Data Protection Act (“DPA”) which it superseded.

Based on privacy by design and taking a risk-based approach, the GDPR has been designed to meet the requirements of the digital age.

GDPR standardise data protection laws and Processing across the EU, affording individuals stronger, more consistent rights to access and control their personal information

 

Updates

This GDPR Notice was last updated on the Last Revised date at the top of this Notice. However, this Notice can change over time, for example to comply with legal requirements or to meet changing business needs. The most up-to-date version can be found on Our Site. In case there is an important change that We want to highlight to You, We will also inform You in another appropriate way (for example via a pop-up notice or statement of changes on Our Site).

When We update this statement, We will amend the revision date at the top of this page. The modified or amended privacy statement will apply from that date. We encourage You to review this statement periodically to remain informed about how We are protecting Your information.

 

Our GDPR Commitment

We have a consistent level of data protection and security across Our organisation, and Our aim is to be always fully compliant with the GDPR and We will endeavour to hold relevant and accurate Personal Data, and where practical, We will keep it up to date.

We continually endeavour to ensure that all Our data protection policies and procedures meet the requirements and standards of the GDPR and any relevant data protection laws, including:

  • Data Protection: Our main privacy policies and procedure documents for data protection meet the standards and requirements of the GDPR. Accountability and governance measures are in place to ensure that We understand and adequately disseminate and evidence Our obligations and responsibilities. We only Process Personal Data for specified and lawful purposes and endeavour to keep all Personal Data secure .
  • Data Retention & Erasure: Our retention procedural schedules ensure that We meet the ‘data minimisation’ and ‘storage limitation’ principles and that personal information is stored, archived, and destroyed compliantly and ethically and We will not keep Personal Data for longer than is necessary. We have dedicated erasure procedures in place and are aware of when this and other data subject’s rights apply along with any exemptions, response timeframes and notification responsibilities.
  • Data Breaches: Our breach procedures ensure that We have safeguards and measures in place to identify, assess, investigate, and report any Personal Data breach at the earliest possible time in line with the Information Commissioner’s Office (“ICO”) guidance.
  • International Data Transfers & Third-Party Disclosures: We do not store or transfers personal information outside the EU and endeavour to ensure that Personal Data is not transferred to countries outside of the European Economic Area (“EEA”) without adequate protection, robust procedures, and safeguarding measures in place to secure, and maintain the integrity of the data. We conduct strict due diligence checks with all recipients of Personal Data to assess and endeavour to verify that they have appropriate safeguards in place to protect the information, ensure enforceable data subject rights and have effective legal remedies for data subjects where applicable.

 

Your rights

You have rights under the GDPR to:

    • access Your Personal Data; and
    • be provided with information about how Your Personal Data is processed; and
    • have Your Personal Data corrected; and
    • have Your Personal Data erased in certain circumstances; and
    • object to or restrict how Your Personal Data is processed; or
    • have Your Personal Data transferred to yourself or to another business in certain circumstances.

 

Complaints

You also have the right to take any complaints about how We Process Your Personal Data to the Information Commissioner:

https://ico.org.uk/concerns

0303 123 1113.

Information Commissioner’s Office

Wycliffe House

Water Lane

Wilmslow

Cheshire SK9 5AF

 

Contact Information

We have a Privacy Team that is responsible for the implementation of Our privacy policy and procedure program. If You have questions or comments about this GDPR Compliance Statement and Our privacy practices or if You are a Customer and need to update, change, or remove information from any personal records, please contact Us using Our Contact Form on Our Site.