Data Protection Policy

 

Data Protection Policy
Base One Holdings Ltd
www.base-one.co.uk

  1. Introduction
    Base One Holdings Ltd (“we,” “our,” “us”) is committed to protecting the privacy and security of personal data. This policy outlines how we collect, use, store, and protect personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
  2. Scope
    This policy applies to all employees, contractors, customers, suppliers, and any other individuals whose personal data we process.
  3. Data Collection and Processing
    We collect personal data for legitimate business purposes, including but not limited to:
  • Providing services to our customers
  • Managing employee records
  • Processing transactions
  • Marketing and communications
  • Legal and regulatory compliance

The types of data we collect may include names, contact details, payment information, and other relevant personal details.

  1. Lawful Basis for Processing
    We process personal data based on one or more of the following legal bases:
  • Consent: Where individuals have given explicit consent
  • Contractual necessity: To fulfill our contractual obligations
  • Legal obligation: Compliance with legal or regulatory requirements
  • Legitimate interests: Where processing is necessary for our business operations, provided it does not override individual rights
  1. Data Security
    We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, destruction, or disclosure. These measures include:
  • Encryption of sensitive data
  • Access control mechanisms
  • Secure storage and disposal of personal data
  • Regular security assessments
  1. Data Retention
    We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Once data is no longer needed, it is securely deleted or anonymized.
  2. Data Sharing and Transfers
    We do not sell or rent personal data. However, we may share data with third parties, including:
  • Service providers assisting in our operations
  • Regulatory authorities when legally required
  • Partners for business purposes, with appropriate safeguards

When transferring data outside the UK, we ensure compliance with data protection regulations and implement necessary safeguards.

  1. Individual Rights
    Individuals have the following rights regarding their personal data:
  • Right to access: Request a copy of personal data we hold
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of data under certain conditions
  • Right to restrict processing: Limit how we use personal data
  • Right to data portability: Obtain data in a structured format
  • Right to object: Object to data processing in specific circumstances

Requests to exercise these rights can be submitted via [email protected]

  1. Data Breach Notification
    In the event of a data breach, we will assess the impact and notify affected individuals and relevant authorities as required by law.
  2. Updates to this Policy
    We may update this policy from time to time. Any changes will be posted on our website, and where necessary, we will notify affected individuals.
  3. Contact Information
    For questions regarding this policy or to exercise your data protection rights, please contact:

Data Protection Officer
Base One Holdings Ltd
Email: [email protected]
Address: 108 George V Avenue Worthing BN115RR