Information on this site is advertising in nature.

GDPR Compliance

Last updated: January 2024

1. Our Commitment to GDPR

angliakron7finance is committed to ensuring compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We recognise the importance of protecting personal data and respect the privacy rights of all individuals whose data we process.

2. Data Controller

angliakron7finance acts as the data controller for personal data collected through our website and in connection with our training services. As data controller, we determine the purposes and means of processing personal data and are responsible for ensuring compliance with data protection legislation.

Contact details:
angliakron7finance
47 Commerce Street
Manchester, M2 4PQ
United Kingdom
Email: [email protected]

3. Principles of Data Processing

We adhere to the following principles when processing personal data:

  • Lawfulness, Fairness, and Transparency: We process data lawfully and transparently, informing individuals about how their data is used.
  • Purpose Limitation: We collect data only for specified, explicit, and legitimate purposes.
  • Data Minimisation: We collect only data that is necessary for our stated purposes.
  • Accuracy: We take reasonable steps to ensure personal data is accurate and up to date.
  • Storage Limitation: We retain data only for as long as necessary.
  • Integrity and Confidentiality: We implement appropriate security measures to protect personal data.
  • Accountability: We demonstrate compliance with these principles.

4. Lawful Bases for Processing

We rely on the following lawful bases for processing personal data:

  • Consent: Where you have provided clear consent for us to process your data for specific purposes.
  • Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering a contract.
  • Legitimate Interests: Where processing is necessary for our legitimate interests, provided these do not override your fundamental rights and freedoms.
  • Legal Obligation: Where processing is necessary to comply with legal requirements.

5. Your Data Protection Rights

Under the UK GDPR, you have the following rights:

Right to Be Informed

You have the right to be informed about how we collect and use your personal data. This information is provided in our Privacy Policy and this GDPR statement.

Right of Access

You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR). We will respond to valid requests within one month.

Right to Rectification

You have the right to request that we correct any personal data that is inaccurate or incomplete.

Right to Erasure

You have the right to request the deletion of your personal data in certain circumstances, including when the data is no longer necessary for its original purpose.

Right to Restrict Processing

You have the right to request that we limit the way we use your data in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller.

Right to Object

You have the right to object to processing based on legitimate interests or direct marketing purposes.

Rights Related to Automated Decision Making

You have rights in relation to automated decision making and profiling. We do not currently engage in automated decision making that produces legal or similarly significant effects.

6. Exercising Your Rights

To exercise any of your data protection rights, please contact us at [email protected]. We will respond to your request within one month. In certain circumstances, we may extend this period by two months, in which case we will inform you of the extension and the reasons for it.

We may need to verify your identity before processing your request. There is generally no charge for exercising your rights, although we may charge a reasonable fee if requests are manifestly unfounded or excessive.

7. Data Security

We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

  • Secure storage systems with access controls
  • Regular review of data processing activities
  • Staff training on data protection
  • Incident response procedures

8. Data Breach Notification

In the event of a personal data breach that poses a risk to individuals' rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to individuals, we will also notify those affected without undue delay.

9. International Transfers

We primarily process data within the United Kingdom. If we transfer data outside the UK, we will ensure appropriate safeguards are in place in accordance with data protection law.

10. Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Website: ico.org.uk

11. Updates to This Statement

We may update this GDPR statement from time to time to reflect changes in our practices or legal requirements. The latest version will always be available on our website.

We use cookies to enhance your experience on our website. By continuing to browse, you agree to our use of cookies. Read our Cookies Policy for more information.