GDPR Privacy Statement

What is the New Legislation and Who does it apply to?

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a privacy and data protection regulation for all EU citizens and information related to those subjects effective from 25 May 2018.

This privacy statement describes why and how we collect, use and process personal data. It provides information about individual rights and applies to personal data provided directly to us. We use this data for the purposes described in this privacy statement, or the purposes stated at the point of collection.

The GDPR regulation applies to data processing carried out by our company within the EU and any organisations outside the EU processing on our behalf.

What is Personal Data?

Personal data is any information relating to an identifiable ‘living’ person.

KFL Resourcing Ltd processes such data for very few purposes through direct consent or legitimate business interests. The means of collection, the lawful basis upon which the purposes for processing are performed, the use of that data, any disclosures and the retention period may differ depending on the particular purpose.

KFL Resourcing Ltd categorises the data we receive, and handles it accordingly, the more sensitive personal data being handled with extra controls and due diligence.

How we collect Information

Personal data is collected from:

  • Directly from the individual concerned
  • Directly from the business client
  • We do not collect or buy data from online sources
  • There are cookies used purely for statistics. The cookies do not collect any data on the individual browsing, in addition there is no processing of this data in terms of any profiling.
  • We do not hold any credit card details on our customers.

Any collection of data is directly from the person through email communication or over the phone directly with the person. Any further references are purely with the consent of the individual, and no processing takes place without that explicit consent.

How we use Customer Information

We use information on our customers to fulfil a few straightforward operations:

  • Fulfil their contractual orders
  • We store customer details on servers and cloud infrastructure but only those based in the UK or the EU
  • We do not sell any customer data
  • We do not share any customer data with other companies or service providers

Who we share Customer Information with

We do not share any information with any service providers and all processing is in-house and purely for business purposes.

Data Controllers and Data Processors

GDPR introduces the duties and responsibilities of data controllers and data processors. Data controllers are directly responsible for the lawful collection and the correct processing of the customer data. Data processors are responsible for the correct processing of the data as set out by the data controller for a type of business purpose.

Our data controller can be contacted at the following registered office:

Kamal D Lathar
KFL Resourcing Ltd
Midway
East End
North Leigh
Witney
OX29 6PZ

Data Protection Officer duties and responsibilities: Who to contact

KFL Resourcing Ltd DPO (Data Protection Officer) roles and responsibilities have been documented. The role is being performed by the director.

To contact us on any privacy queries please do so through the email account privacy@kflresourcing.com.

Where to get further information

The following link will provide sources of information on this subject…
https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/

Your Rights

Individuals have rights over personal data and our data controllers are responsible for fulfilling those rights.

Here we explain the various rights you have to your data if we are the data controller:

  • Access to your personal data
    • You have the right to access the personal data held by us. We may charge for request for access in accordance with applicable law. We will endeavour to respond to your request within one month.
  • Amend your personal data
    • To update your data due to inaccuracy or change, you can email us on privacy@kflresourcing.com or contact us through our website. Once we have been informed that data is inaccurate, we will make corrections to the appropriate validated updates.
  • Withdraw consent for the processing of your personal data
    • Where we process personal data based on consent, individuals have the right to withdraw consent at any time. To withdraw consent to our processing, simply email privacy@kflresourcing.com.
  • Erasure/Deletion:
  • Restrict Processing:
  • Right to Data Portability:
  • Complaints
    • If you need to complain about our use of your personal data, this too can be handled by our Director, and you have the right to lodge the complaint with the Information Commissioner’s Office (‘ICO’) – the UK Data Protection regulator. We will do our best to resolve any contentious issues. Further information on this is available on the ICO website.

Security and how we protect Customer Data

To protect our operations, our customers and partners, we currently keep our operations in-house and within the EU.

Our Commitment to GDPR Compliance

KFL Resourcing Ltd wants to reassure all its customers and partners that it is committed to meeting all its legal obligations.