Purpose: Flexible Wifi Ltd is committed to protecting the personal data of its customers, employees, and other stakeholders. This Data Deletion Policy outlines the procedures that Flexible Wifi Ltd will follow when deleting personal data to ensure compliance with the General Data Protection Regulation (GDPR) and UK law
Scope: This policy applies to all personal data processed by Flexible Wifi Ltd, including data processed by employees, contractors, and third-party service providers on behalf of the company.
Data Deletion Procedures: Flexible Wifi Ltd will delete personal data in the following circumstances:
When the purpose for which the data was collected has been fulfilled and the data is no longer needed.
When the data subject withdraws their consent for the processing of their personal data and there is no other legal basis for the processing.
When the data subject objects to the processing of their personal data and there are no overriding legitimate grounds for the processing.
When the personal data has been processed unlawfully.
When the personal data must be deleted to comply with a legal obligation under UK law.
When the personal data has been collected from a child and the child is no longer a customer or user of Flexible Wifi Ltd.
When the personal data has been collected for marketing purposes and the data subject has opted out of receiving marketing communications.
Data Deletion Timeframes: Flexible Wifi Ltd will delete personal data in a timely manner, taking into account the purposes for which the data was collected, the sensitivity of the data, and any legal requirements for retention periods. In general, personal data will be deleted as soon as it is no longer needed for the purposes for which it was collected, unless there is a legal requirement to retain the data for a specific period of time.
Verification and Documentation: Flexible Wifi Ltd will maintain records of the personal data it processes and deletes, including the purposes for which the data was collected, the legal basis for processing, the retention periods, and the methods of deletion. The company will periodically review and verify the effectiveness of its data deletion procedures to ensure compliance with GDPR and UK law.
Communication: Flexible Wifi Ltd will communicate its data deletion procedures to its employees, contractors, and third-party service providers who process personal data on behalf of the company. The company will also inform data subjects about their right to request the deletion of their personal data and the procedures for making such a request.
Responsibilities The Data Protection Officer (DPO) is responsible for overseeing the implementation of this policy and ensuring compliance with GDPR and UK law. All employees, contractors, and third-party service providers who process personal data on behalf of Flexible Wifi Ltd are responsible for adhering to this policy and following the procedures outlined in it.
Breach Notification: In the event of a data breach involving personal data that has been deleted, Flexible Wifi Ltd will promptly notify the Information Commissioner's Office (ICO) and affected data subjects, in accordance with GDPR and UK law.
This Data Deletion Policy is effective as of 23/01/2021 and will be reviewed and updated as necessary to ensure ongoing compliance with GDPR and UK law.