Data protection & GDPR
Effective Date: 17th November 2023
Xaura.io is committed to ensuring the privacy, security, and compliance of the personal data we collect and process. This policy outlines our approach to data protection in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
2. Data Collection and Processing
We collect and process personal data for specific, explicit, and legitimate purposes. The types of data collected may include but are not limited to:
- Names, contact information, cookie preferences.
3. Legal Basis for Processing
We process personal data only when we have a legal basis to do so. This may include the necessity of processing for the performance of a contract, compliance with a legal obligation, protection of vital interests, consent, the performance of a task carried out in the public interest, or the legitimate interests pursued by Xaura.io or a third party.
4. Data Security
We implement appropriate technical and organisational measures to ensure the confidentiality, integrity, and availability of personal data. This includes regular security assessments, data encryption, access controls, and employee training.
5. Data Subject Rights
We respect the rights of data subjects as outlined in the GDPR, including the right to access, rectification, erasure, and the right to object to processing. Requests to exercise these rights can be made to Lisa Harrison-Evans, Business Operations Manager.
6. Data Breach Notification
In the event of a data breach, Xaura.io will promptly assess and notify the appropriate supervisory authority and affected data subjects in accordance with GDPR requirements.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by applicable laws.
8. Third-Party Data Processors
When engaging third-party data processors, we ensure that they comply with GDPR and have adequate data protection measures in place.
9. Cookies and Tracking Technologies
10. Policy Review and Updates
This policy will be reviewed periodically and updated as needed to reflect changes in our data processing practices or regulatory requirements.
For inquiries related to our Data Protection and GDPR Policy, please contact Lisa Harrison-Evans, Business Operations Manager, Xaura.io, Enterprise House, Harmire Enterprise Park, Darlington, DL12 8XT, 01325 792680.