Introduction
Skinart Training is committed to ensuring the protection of personal data. This Data Protection Policy outlines the principles and directives for processing and securing personal data.
Scope
This policy applies to all personal data processed by Skinart Training, and its employees, and contractors.
Data Protection Principles
The company adheres to the following principles for processing personal data:
- Lawfulness, Fairness, and Transparency: Data is processed legally, fairly, and transparently.
- Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes.
- Data Minimization: Only data that is necessary for the purposes of processing is collected.
- Accuracy: Reasonable steps are taken to ensure that personal data is accurate and kept up to date.
- Storage Limitation: Data is kept in a form that permits identification of data subjects for no longer than necessary.
- Integrity and Confidentiality: Data is processed in a manner that ensures appropriate security.
Roles and Responsibilities
- Data Protection Officer (DPO): The DPO oversees compliance with this policy and data protection laws.
- Employees and Contractors: All employees and contractors must understand and adhere to this policy.
Data Subject Rights
Data subjects have the right to access their personal data, request correction, object to processing, request deletion, and exercise their right to data portability.
Data Security
Appropriate technical and organizational measures are implemented to safeguard personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.
Data Breach Notification
In the event of a data breach, the DPO will follow the appropriate protocol to assess the situation and notify the supervisory authority and affected data subjects if required by law.
Training and Awareness
Regular training on data protection will be provided to staff handling personal data.
Review and Audit
This policy will be reviewed annually or as required by legislative changes. Regular audits will be conducted to ensure compliance.
Compliance
Failure to comply with this policy may result in disciplinary action, up to and including termination.
Contact Details
Data Protection Officer:
Zane Erskine – admin@skinarttraining.com
This policy is effective from 07 November 2023