General Data Protection Regulation (GDPR) statement
The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU.
The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
It was adopted on 14 April 2016, and after a two-year transition period, became enforceable on 25 May 2018.
In line with the GDPR, Heaven Scent will:
- Keep data safe & secure
- Only hold data we truly need or can justify having
- Not keep or use data without a person’s express permission
- Not use data inappropriately
- Restrict which employees can see what data
As a company we work to, maintain and adhere to all GDPR protocols to ensure we keep our customer, supplier, staff and any other personal information safe and secure.
Our customers, suppliers and staff can ask us for a copy of our full policy at any time, and request to know how we store and use their personal information.
This statement was written for and put into effect on 25th May 2018.
Andrew D. Scott
25 May 2018