top of page

GDPR Policy

**Privacy Policy**

 

 

Last Updated: October 2023

 

**GDPR Policy**

 

**1. Introduction**

 

At Pussy Galore we are committed to protecting the privacy and data rights of our clients. This GDPR Policy outlines our approach to complying with the General Data Protection Regulation (GDPR) and our commitment to safeguarding personal data.

 

**2. Data Collection and Processing**

 

- **Lawful Basis:** We collect and process personal data only for lawful purposes related to the services we provide. This includes client information such as names, contact details, and medical history.

 

- **Consent:** We obtain explicit consent from clients before collecting and processing any personal data. Clients have the right to withdraw their consent at any time.

 

**3. Data Security**

 

- **Security Measures:** We implement technical and organisational measures to safeguard personal data against unauthorised access, disclosure, alteration, and destruction.

 

- **Data Storage:** Personal data is securely stored in digital and physical formats. We regularly review and update our security protocols.

 

**4. Data Retention**

 

- **Data Retention Period:** Personal data is retained for only as long as necessary to provide our services and comply with legal obligations. We periodically review the necessity of data retention.

 

**5. Data Subject Rights**

 

- **Access and Rectification:** Clients have the right to access their personal data and request corrections.

 

- **Erasure (Right to be Forgotten):** Clients can request the deletion of their data under certain conditions.

 

- **Data Portability:** Clients have the right to receive their personal data in a structured, commonly used, and machine-readable format.

 

**6. Data Processing Records**

 

- **Records Maintenance:** We maintain records of data processing activities, including data collection, processing, and sharing, to ensure compliance with GDPR.

 

**7. Data Breach Response**

 

- **Notification:** In the event of a data breach, we will notify the appropriate authorities and affected individuals, as required by GDPR.

 

**8. Data Transfer**

 

- **Data Transfer:** We do not transfer personal data to countries outside the European Economic Area (EEA) unless adequate data protection measures are in place.

 

**9. Consent Management**

 

- **Consent Records:** We maintain records of consent obtained from clients.

 

- **Withdrawal:** Clients can easily withdraw their consent for data processing at any time.

 

**10. Data Protection Officer**

 

**Designated Officer:** Julie White is responsible for overseeing data protection activities.

 

**11. Client Communication**

 

**Data Handling Communication:** We communicate with clients regarding data handling, privacy practices, and GDPR compliance.

 

**12. Policy Updates**

 

**Policy Revisions:** We may update this GDPR Policy to reflect changes in legal requirements and our practices. Clients will be informed of significant policy updates.

 

By using our services, clients acknowledge and agree to our GDPR Policy.

 

Pussy Galore

07/08/2023

 

**11. Contact Us**

 

If you have any questions or concerns regarding this Privacy Policy, please contact us at info@pussygalore.org.uk

 

 

Julie White - CEO Pussy Galore www.pussygalore.co.uk @pu.ssygaloreltd 

bottom of page