Summary
AxiaNET handles personal data lawfully, fairly and transparently, in line with UK GDPR and the Data Protection Act 2018. This policy sets out our principles; for exactly what we collect about website visitors and customers, see our Privacy & Cookie Policy.
Our data protection principles
- Process personal data lawfully, fairly and transparently.
- Collect it only for specified, explicit and legitimate purposes.
- Keep it adequate, relevant and limited to what is necessary.
- Keep it accurate and up to date.
- Retain it no longer than necessary.
- Keep it secure with appropriate technical and organisational measures.
Lawful basis & roles
We act as a data controller for our own customer and prospect data, and as a data processor when handling data on behalf of customers under our contracts. We process personal data on a lawful basis — usually performance of a contract, legitimate interest, legal obligation or explicit consent.
Your rights
Individuals have the right to be informed, and to access, rectify, erase, restrict, port or object to the processing of their personal data. To make a request, email helpdesk@axia.co.uk. We respond within one month.
Breaches
We have procedures to detect, report and investigate personal data breaches, and we notify the ICO within 72 hours, and affected individuals without undue delay, where the law requires it.
Complaints
Tell us first so we can put things right. You also have the right to complain to the UK Information Commissioner's Office (ico.org.uk).