Data Protection and Access to Information
Made Open will comply with all statutory requirements of Data Protection law including the requirements of the General Data Protection Regulations (GDPR). Any personal or sensitive information on an individual which the Company holds is covered by this legislation. This includes emails too. If you receive a subject access request, you should refer this immediately to your line manager.
If you are a user of such information you need to be sure that you are not breaching any data protection rules when you store or use information and when you write and send emails. This could include but is not limited to:
- Using data which has not been kept up-to-date.
- Passing on or processing personal information about an individual without their consent.
- Keeping personal information longer than necessary.
- Sending personal information outside the country.
If any breach of data protection rules is discovered such as the leaking or hacking of personal or sensitive data, this should be reported immediately to your line manager, and any immediate action should be taken to close down such leaks. Your line manager will ensure this is properly investigated and the appropriate reporting actions taken if necessary.
Employees can request access to the information held on them by the Company. All requests by employees to gain access to such records should be made in writing. There is no charge for this service.
For more information about the Company’s current privacy policies, please read more here: https://madeopen.co.uk/privacy-policy