Last updated: March 07, 2023
At Mozita Digital, we take data protection seriously and are committed to protecting the privacy and personal data of our clients, employees, and all those who entrust us with their information. This policy outlines our approach to data protection in line with the Data Protection Act 2018 (DPA 2018) and the General Data Protection Regulation (GDPR).
Our Data Protection Officer (DPO) oversees data protection within our organization and ensures compliance with the DPA 2018 and GDPR. All employees, contractors, and third-party service providers with access to personal data are responsible for ensuring that they comply with this policy.
We collect personal data to provide clients services, comply with legal requirements, and manage our business operations. The personal data we collect may include the following:
- Name and contact details, including email address, phone number, and postal address.
- Information about a client's business, including website URL, social media accounts, and other online platforms.
- Financial information, such as bank account details and billing information.
- Information about a client's employees, such as their names and contact details.
We collect personal data only when it is necessary and lawful to do so. We inform individuals about the purposes for which their data will be used and obtain their consent where required.
Data Storage and Retention
We store personal data securely and take appropriate measures to protect it from unauthorized access, accidental loss, destruction, or damage. We retain personal data only for as long as it is necessary for the purposes for which it was collected or as required by law.
We process personal data only for the purposes for which it was collected and by our client's instructions. We do not disclose personal data to third parties unless it is necessary to provide our services, or we must do so by law. We ensure that any third parties with whom we share personal data have appropriate security measures to protect it.
Data Subject Rights
Individuals have the right to request access to their data, to have it rectified or erased, to restrict its processing, to object to its processing, and data portability. We take all requests seriously and respond to them promptly and in accordance with the DPA 2018 and GDPR.
In the event of a personal data breach, we will take all necessary steps to contain and mitigate the impact. We will also notify the Information Commissioner's Office (ICO) and affected individuals without undue delay, as required by law.
Training and Awareness
We provide regular training and awareness-raising activities for our employees to ensure that they understand their responsibilities under data protection laws and are equipped to comply with this policy.
Review and Update
We regularly review and update this policy to ensure it remains accurate and current. Any changes to this policy will be communicated to all employees and third-party service providers.
If you have any questions or concerns about our data protection policy or how we handle personal data, please get in touch with our Data Protection Officer.