How do we protect your competitive edge?
We're not just consultants; we're guardians of your process integrity. In an era where data is the new oil, we ensure yours isn't leaked or misused. This policy outlines our commitment to the UK GDPR and the Data Protection Act 2018, specifically tailored for the high-stakes environment of Quality Management Systems (QMS).
Our team regularly handles sensitive supply chain blueprints and internal audit findings. Since our founding in London, we've never compromised on the security protocols that keep your certification journey private.
Collection Limits
We only catalog data essential for your ISO certification. If it doesn't help you pass an audit, we don't store it.
Storage Security
Encrypted at rest and in transit. Our cloud infrastructure meets the very ISO 27001 standards we consult upon.
Your Rights
Access, rectify, or erase. You own your compliance roadmap; we just help you draw it.
Third-Party Neutrality
Broadly speaking, we don't sell your data. Never have, never will. We only share information with accredited certification bodies (like UKAS-accredited registrars) when you explicitly instruct us to proceed with an official audit preparation transfer.
Contact our DPO at [email protected] for specific disclosure logs.
Full Policy Framework
1. Information We Collect
"We're obsessed with precision, even in our paperwork."
We collect identity data (names, roles), contact data (business emails), and Technical Compliance Data (audit logs, process maps). This data is vital for process optimisation benchmarks.
2. Retaining Your Records
In line with standard ISO cycles, we typically retain audit preparation records for 7 years to ensure consistency across re-certification intervals. You'll be notified 30 days before scheduled purge cycles.
Privacy is not merely an option in Quality Management; it is the foundation of the transparent relationships required for continuous improvement. Without trust, there is no quality.
Eleca Gulwadi
Compliance Lead, London Hub