Data Protection (UK GDPR) Statement
Binder Community Limited · No. 17058768
Overview
Binder Community Limited takes the protection of personal data seriously. This statement summarises how we approach data protection. Full details of how we handle personal data are in our
Privacy Policy, which this statement supports and does not replace.
1. The law we follow
We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, and we are registered with the Information Commissioner’s Office (ICO).
2. Our principles
We handle personal data lawfully, fairly and transparently; for specified purposes; limited to what is necessary; accurately; for no longer than necessary; and securely — and we take responsibility for doing so.
3. Lawful bases and sensitive data
We process personal data on recognised lawful bases, and we treat special category data (such as data revealing sexual orientation or gender identity) with particular care, relying on your explicit consent or another lawful condition, supported by an Appropriate Policy Document. See our Privacy Policy for detail.
4. Your rights
You can access, correct, delete, restrict, object to, and port your personal data, withdraw consent where we rely on it, and complain to the ICO. We explain how in our Privacy Policy.
5. How we protect data
We apply technical and organisational measures appropriate to the sensitivity of the data, including encryption, access controls (including row-level security and least-privilege access), and hashed password storage, and we have a personal data breach response plan.
6. Accountability
We maintain a record of processing activities, carry out data protection impact assessments for high-risk processing, keep an Appropriate Policy Document and data retention schedule, train our people, put written data-processing terms in place with our providers, and have appointed a Data Protection Officer.
7. Service providers and international transfers
We use trusted providers under written contracts and aim to keep personal data in the UK; where any data is processed outside the UK, we use appropriate safeguards. See our Privacy Policy.
8. Contact and complaints
Contact our privacy team / DPO at: