Everything we do relating to your information is covered by the following over-arching data principles:
- Your information belongs to you, not us – you should be able to control it, and you should know about, and be comfortable with, everything that we do with your information;
- We will only collect, keep, use and share your information either (a) for genuine business purposes that we’ve explained clearly to you and that you haven’t objected to, or (b) where we’re legally required to do so – and as soon as those purposes have been fully achieved, we will delete your information;
- We will be as clear and open as we can with you on what information we collect, why we collect it and how we use it, so you are informed and able to make decisions to control your information in the ways you’re comfortable with;
- As long as we have your information, we will keep it up to date and protect it as if it was our own sensitive information, using appropriate security safeguards, having kept on top of and appropriately taken into account the latest industry standards and best practice.