PVS are committed to ensuring that all aspects of our systems and data storage fully comply with all legislative requirements and GDPR.
To ensure that all data held by PVS is maintained in a secure manner at all times the company has adopted and implemented the principles set out in GDPR, the Computer misuse act and the Data protection act.
Hard copy data records are locked away in a restricted access office and all digital software is authorised and licensed.
It is company policy to retain all data and associated records for 2 years since the customer’s last visit, after this time records will be destroyed.
It is the policy of PVS not to release any customer or employee data to any third party without their prior written consent. The only exception to this would be in response to a formal request for information by a law enforcement or regulatory compliance body.
Access to all company IT systems is restricted to authorised personnel and this being controlled by user passwords and access permission levels. The IT system is protected with an internal firewall and proprietary anti-virus software.
All offices where data is handled are locked and restricted to authorised personnel.
Keeping your information up to date
We request that suppliers, contractors and clients make best attempts to ensure data held by us is up to date and accurate. In the event of any changes to data or the discovery of any inaccuracies please contact PVS.
The General Data Protection Regulations sets out the following rights for individuals:
The right to be informed
This statement and associated documents set out what data we collect and how we process it. At the point of collection, we will direct you to these documents and inform you of why we are collecting data.
The right of access
You have a right to ask for a copy of the information we hold about you, you can do this by contacting us on email@example.com.
The right to rectification
If your data is inaccurate or incomplete and you have not been able to rectify it with PVS please email firstname.lastname@example.org.
The right to erasure
If you would like us to erase all data we hold on you then you must email email@example.com. This right of erasure does not cover some data which is required to be kept by law.
The right to restrict processing
You have a right to ask us to stop processing your personal data, and if it’s not necessary for the purpose you provided it to us for we will do so.
The right to data portability
We work with our suppliers to ensure any data you request from us will be in an easily readable format.
The right to object
If you would like to object about any of our data processing please contact us on firstname.lastname@example.org.
Communicating changes to this statement