GDPR Readiness Statement May 2018

Posted on the 16th May 2018

Dear Customer,

The European Union’s General Data Protection Regulation (GDPR) will come into force in May 2018, superseding the previous regulation adopted in 1995 which is unsuitable in serving our increasingly data driven world.

The legislation exists to promote best practice when it comes to the governance of information. It will give data subjects more control over their personal data, and support the free flow of data within the EU.

We are currently undergoing our GDPR readiness programme and plan to be compliant ahead of the enforcement date of 25th May 2018. Pure Innovations Limited is committed to complying with the GDPR framework:

  • Staff training and awareness – how GDPR will impact clients, employees and the supply chain.
  • Supplier management – we are underway with approaching all of our key suppliers requesting further details about their GDPR readiness and are working with them to ensure that both our data and our clients data is appropriately protected.
  • Pure Innovations Systems – ensuring we continue to operate under best practices, assess risk and consider privacy by design.
  • Individual rights – we are updating our processes allowing individuals (data subjects) to request detail of the data held about them and a process to remove this data if required.
  • Data mapping – continue to regularly risk assess our information assets.
  • Data retention – ensuring that data retention periods meet contractual and legal requirements.
  • Our documentation has been updated to reflect the current requirements of GDPR and will continue to evolve in line with the changing guidance coming out of the Information Commissioners Office:

Pure Innovations operate a Quality Management approach across the business, which includes Information Security Management; this is regularly audited to ensure compliance and that:

  • Information is protected against any unauthorised access.
  • Confidentiality, Integrity and Availability of information is assured.
  • Legislative and regulatory requirements are met.
  • Business continuity plans are developed, maintained and tested.
  • All employees receive appropriate Information Security training.
  • All actual or suspected information security breaches are thoroughly investigated.

Pure Innovations Limited takes a very serious and structured approach to maintaining our customer’s data and privacy. Our workplace has adopted a culture of continuous improvement that will allow us to adapt to any changes to GDPR during its infancy.

The data we hold is used solely for the purpose of delivering our services and is not shared with any third parties for other purposes such as direct marketing. The CEO and Senior Managers have all received GDPR readiness training and are happy to field any questions you may have – please direct any queries on this matter to fiona.harradine@pureinnovations.co.uk

Read more posts...

Vernon Voters – THANK YOU!

We are delighted to announce that following the public ballot we have been  awarded  £600 from the Vernon Building Society Community Fund. This is a lovely lump sum towards equipping our new training bakery, coffee...

Posted 18 Oct 2018

Confidence, Community and Pie At Cafe Aroma

Cookery, confidence and community are all on the menu at Cafe Aroma in St Chad’s church  Handforth. Clients love the friendly atmosphere and customers love the fabulous food they prepare – not least those pies!...

Posted 17 Oct 2018