GDPR Policy

1. Introduction
At S80 Partnership Limited, we are committed to protecting the privacy and security of personal data. This policy outlines how we collect, use, store, and protect personal data in compliance with the UK GDPR and the Data Protection Act 2018.

2. Who We Are
Company Name: S80 Partnership Limited
Registered Address: S80 Partnership Limited, Office 10, Middletons Yard, Potter Street, Worksop, S80 2FT
Email: info@s80partnership.co.uk
Phone:0 1909 318693
As a data controller, we are responsible for processing personal data fairly and lawfully.

3. What Data We Collect
We may collect and process the following personal data:
Identity Data: Name, title, date of birth.
Contact Data: Address, email, phone number.
Financial Data: Payment details, transaction history.
Technical Data: IP address, browser type, cookies (see Cookie Policy).
Communication Data: Emails, phone records, and feedback.

4. How We Use Your Data
We only process personal data for legitimate business purposes, including:
Providing our services and fulfilling contractual obligations.
Responding to enquiries and customer support requests.
Processing payments and managing accounts.
Complying with legal and regulatory obligations.
Sending marketing communications (with consent).

5. Lawful Basis for Processing
We process personal data under the following legal bases:

Contractual Obligation: To fulfil a contract with you.
Legal Obligation: To comply with UK laws and regulations.
Legitimate Interest: To improve services and business operations.
Consent: Where we rely on consent, you can withdraw it anytime.

6. Data Sharing and Third Parties
We do not sell or trade personal data. However, we may share it with:
Service providers: IT, payment processors, accountants.
Regulatory bodies: HMRC, law enforcement if legally required.
Professional advisers: Auditors, insurers, and legal counsel.
All third parties are required to respect data privacy and security.

7. Data Security
We implement robust security measures to protect personal data, including:
Encryption and secure storage of data.
Access controls and staff training on data protection.
Regular audits and monitoring of data security.

8. Data Retention
We retain personal data only for as long as necessary for legal, contractual, and business purposes. Retention periods vary depending on:
Legal requirements (e.g., financial records for 6 years).
Ongoing customer relationships.

9. Your Rights Under GDPR
You have the following rights under the UK GDPR:
Right to Access: Request a copy of your personal data.
Right to Rectification: Request corrections to inaccurate data.
Right to Erasure (“Right to be Forgotten”): Request deletion of your data (subject to legal obligations).
Right to Restriction: Request limited processing of your data.
Right to Data Portability: Receive your data in a portable format.
Right to Object: Object to processing based on legitimate interests or direct marketing.
To exercise your rights, contact us at info@s80partnership.co.uk.

10. Cookies and Tracking Technologies
For details on how we use cookies, refer to our Cookie Policy.

11. Complaints
If you have concerns about how we handle your data, contact us at info@s80partnership.co.uk. You also have the right to complain to the Information Commissioner’s Office (ICO):

Website: www.ico.org.uk
Phone: 0303 123 1113

12. Policy Updates

We may update this policy to reflect changes in regulations or business practices. Please check our website regularly for updates.