Skip to main content

Blade Tooling Company Ltd is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy and security of personal data processed in the course of our business activities.

Scope:

This policy applies to all personal data processed by Blade Tooling Company Ltd whether collected from customers, employees, suppliers, or other individuals.

Principles:

  • Lawfulness, Fairness, and Transparency: We will process personal data lawfully, fairly, and transparently, ensuring that individuals are informed about how their data is collected, used, and processed.
  • Purpose Limitation: We will only collect and process personal data for specified, explicit, and legitimate purposes and will not process it in a manner that is incompatible with those purposes.
  • Data Minimization: We will only collect and process personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
  • Accuracy: We will take reasonable steps to ensure that personal data is accurate, complete, and up-to-date, and we will rectify or erase inaccurate or incomplete data without undue delay.
  • Storage Limitation: We will retain personal data only for as long as necessary to fulfill the purposes for which it was collected, taking into account legal, regulatory, and business requirements.
  • Integrity and Confidentiality: We will process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing, accidental loss, destruction, or damage.
  • Accountability: We will be accountable for our data processing activities and will implement appropriate measures to demonstrate compliance with the GDPR, including maintaining records of processing activities and conducting data protection impact assessments where required.

Data Subject Rights:

We recognize and respect the rights of data subjects under the GDPR, including the rights to:

  • Access personal data
  • Rectify inaccurate or incomplete data
  • Erase data (the “right to be forgotten”)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent for processing, where applicable

Data Protection Officer (DPO):

Blade Tooling Company Ltd has appointed a Data Protection Officer (DPO) who is responsible for overseeing compliance with the GDPR and serving as a point of contact for data subjects and supervisory authorities.

Data Breach Notification:

In the event of a personal data breach, Blade Tooling Company Ltd will comply with its obligations to notify the relevant supervisory authority and affected data subjects without undue delay, where feasible, in accordance with the GDPR.

Training and Awareness:

We will provide training and awareness programs to our employees to ensure they understand their responsibilities under the GDPR and are equipped to handle personal data securely and compliantly.

Third-Party Processing:

Where we engage third-party processors to process personal data on our behalf, we will ensure that they provide sufficient guarantees of compliance with the GDPR and implement appropriate security measures.

Review and Update:

This policy will be reviewed periodically to ensure its effectiveness and compliance with applicable laws and regulations. Any updates or changes will be communicated to all relevant stakeholders.

Contact Us:

If you have any questions, concerns, or requests regarding our GDPR compliance or data protection practices, please contact our Data Protection Officer at info@bladetooling.co.uk.

Effective Date:

This GDPR policy is effective as of 1st March 2024.