Data Protection Policy
5 Rings Energy LLP (“the Company”) is committed to ensuring the privacy and security of personal data collected from customers, employees, contractors, and other individuals in the course of its business activities. This Data Protection Policy outlines the Company’s approach to data protection and its commitment to compliance with applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR) in the European Union.
Scope
This Data Protection Policy applies to all personal data collected, processed, stored, or transmitted by the Company in connection with its business operations, including data subject to the requirements of the GDPR.
Compliance with Data Protection Laws, Including GDPR
The Company is committed to complying with all applicable data protection laws and regulations, including but not limited to the General Data Protection Regulation (GDPR) in the European Union, the California Consumer Privacy Act (CCPA), and any other relevant laws or regulations in the jurisdictions where the Company operates.
Under the GDPR policy, the Company ensures that personal data is:
- Processed lawfully, fairly, and transparently.
- Collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
- Adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
- Accurate and, where necessary, kept up to date.
- Retained only for as long as necessary to fulfil the purposes for which it was collected.
- Processed in a manner that ensures appropriate security of the personal data.
Collection and Use of Personal Data
The Company collects and processes personal data for specified, explicit, and legitimate purposes, and only to the extent necessary for those purposes. Personal data is collected lawfully, fairly, and transparently, and individuals are informed of the purposes for which their data is collected and processed.
Personal data may be collected from customers, employees, contractors, and other individuals in various contexts, including but not limited to:
- Customer inquiries, orders, and transactions
- Employment applications and personnel records
- Contractor agreements and engagement
- Marketing and promotional activities
Personal data collected by the Company may include, but is not limited to, names, contact information, financial information, employment history, and other relevant information necessary for the Company’s business operations.
Data Security
The Company implements appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. These measures include, but are not limited to, encryption, access controls, secure storage, and regular security assessments.
Data Retention
Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, unless a longer retention period is required or permitted by law. When personal data is no longer needed, it is securely deleted or anonymized.
Data Sharing and Disclosure
The Company may share personal data with third-party service providers, contractors, and other business partners as necessary for the purposes outlined in this Policy. All third parties that process personal data on behalf of the Company are required to comply with this Policy and applicable data protection laws and regulations.
Personal data may also be disclosed when required by law or to protect the rights, property, or safety of the Company, its employees, customers, or others.
Individual Rights
Individuals have the right to access, correct, update, or delete their personal data held by the Company. Requests to exercise these rights should be submitted in writing to the Data Protection Officer (DPO) at the contact information provided below.
Data Protection Officer
The Company has appointed a Data Protection Officer (DPO) who is responsible for overseeing compliance with this Policy and applicable data protection laws and regulations, including the GDPR. The DPO can be contacted by emailing: quotes@5ringsenergy.co.uk.
By Post: 5 Rings Energy LLP, Amelia House, Crescent Rd, Worthing, BN11 1RL
Training and Awareness
The Company provides regular training and awareness programs to its employees on data protection principles, policies, and procedures to ensure compliance and promote a culture of data protection throughout the organization.
Policy Review and Updates
This Data Protection Policy is reviewed regularly and updated as necessary to reflect changes in the Company’s business activities, applicable laws and regulations, and best practices in data protection.
Contact Information
If you have any questions or concerns about this Data Protection Policy or the Company’s data protection practices, please contact the Data Protection Officer using the contact details above.