GDPR Policy
Introduction
At Review Mobility, we are committed to protecting the privacy and data security of our users and customers. This GDPR (General Data Protection Regulation) Policy outlines our practices and procedures for collecting, processing, and safeguarding personal data in compliance with the GDPR and other applicable data protection regulations.
1. Data Controller
1.1 Identity of the Data Controller
Review Mobility is the data controller responsible for the collection and processing of personal data as described in this policy.
1.2 Contact Information
If you have questions or concerns about our data processing activities, you can reach us at:
hello@reviewmobility.co.uk
2. Data Collection and Processing
2.1 Purpose of Data Collection
We collect and process personal data for specific and legitimate purposes, including:
- Providing requested services and products.
- Managing customer accounts.
- Responding to inquiries and requests.
- Sending marketing communications with consent.
- Complying with legal obligations.
2.2 Types of Data Collected
We may collect various types of personal data, including but not limited to:
- Contact information (e.g., name, email address, phone number).
- Billing and payment details.
- User preferences and account information.
- Communication history.
- Website usage data (e.g., cookies, IP addresses).
3. Legal Basis for Processing
3.1 Consent
We obtain explicit consent when required for processing personal data, particularly for marketing communications.
3.2 Contractual Necessity
Some data processing is necessary for the performance of a contract with users or customers.
3.3 Legal Obligations
We process data to comply with legal obligations, such as tax or accounting requirements.
4. Data Security
We implement appropriate technical and organizational measures to ensure the security of personal data, including encryption, access controls, and regular security assessments.
5. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required by law.
6. Data Subject Rights
6.1 Right to Access
Data subjects have the right to request access to their personal data.
6.2 Right to Rectification
Data subjects can request the correction of inaccurate or incomplete personal data.
6.3 Right to Erasure
Data subjects have the right to request the deletion of their personal data under certain circumstances.
6.4 Right to Object
Data subjects can object to the processing of their personal data in specific situations.
7. Data Transfers
We may transfer personal data to third parties when necessary, ensuring that appropriate safeguards and data protection agreements are in place.
8. Data Breach Notification
In the event of a data breach that poses a risk to individuals’ rights and freedoms, we will notify the appropriate supervisory authority and affected data subjects as required by law.
9. Policy Updates
This GDPR Policy is subject to periodic review and may be updated to ensure compliance with changes in data protection laws and our data processing practices.
10. Contact Information
If you have questions or concerns regarding our GDPR compliance or data processing activities, please contact us at:
hello@reviewmobility.co.uk