Inspired Production

DATA PROTECTION POLICY   Event Operations Ltd Data Protection Policy – ICO Application Number A8271096. Security Number CSN9220351

Nature of work - General business

Reasons/purposes for processing information

We process personal information to enable us to promote our goods and services, to maintain our accounts and records and to support and manage our staff.

Type/classes of information processed

We process information relevant to the above reasons/purposes. This may include:

• personal details
• family, lifestyle and social circumstances
• financial details
• employment and education details
• goods or services provided

We also process sensitive classes of information that may include:

• physical or mental health details
• racial or ethnic origin
• religious or other beliefs of a similar nature
• trade union membership

Who the information is processed about 

We process personal information about our:

• employees
• customers and clients
• suppliers and services providers
• advisers, consultants and other professional experts
• complainants and enquirers

Who the information may be shared with 

We sometimes need to share the personal information we process with the individual themselves and also with other organisations. Where this is necessary we are required to comply with all aspects of the Data Protection Act (DPA). What follows is a description of the types of organisations we may need to share some of the personal information we process with for one or more reasons. Where necessary or required we share information with:

• family, associates and representatives of the person whose personal data we are processing
• employment and recruitment agencies
• current, past and prospective employers
• educators and examining bodies
• central government
• credit reference agencies
• suppliers and service providers
• debt collection and tracing agencies
• financial organisations

Information is processed for consultancy and advisory services that are offered. For this reason the information processed may include name, contact details, family details, financial details, and the goods and services provided. This information may be about customers and clients. Where Necessary this information is shared with the data subject themselves, business associated and other professional advisors, current, past or prospective employers and service providers.

What can happen to the data 

All individuals have the ‘Right to be Forgotten (Right to Erasure) and upon request we will delete any personal data we have on file. We will delete personal data if the continuing processing of the data is no longer necessary. All individuals have the right to obtain confirmation as to whether or not their personal data is being processed, where and for what purpose. We will provide this information in electronic format, free of charge upon request.

Data breach notification process 

If there is a breach of the server and it is deemed that the breach is likely to ‘result in a risk for the rights and freedoms of individuals’ whose data we have processed we will notify individuals within 72 hours of the breach. We will also notify the Supervisory Authority and the ICO of the data breach. We will fully comply with their requirements and work with their assistance where needed.

 Who is responsible 

The hiring of a Data Protection Officer is required for all organisations who process data. They are responsible for informing and advising the controller or processor with regards to their data protection obligations. If you wish to speak with our Data Protection Officer please contact Alexandra Thorne (alexandra@event-ops.com)