Data Protection Policy

ilateral is registered with the ICO, registration number ZA318515.  Details of ilateral's entry can be found on the ICO website. Please find below details of our procedures and policies in line with the General Data Protection Regulations 2018.

data retained

This site uses forms to enable you to contact us.  These forms collate the following information:

  • Full Name.
  • Email Address.
  • Phone Number.

In addition, you may chose to provide us with information about your business and your website address in order for us to communicate with you regarding work you may wish us to undertake.  If we do not have information about you we cannot interact or undertake works for you.  This data is only retained for our business use and is not passed to any third parties.

However, if there has been no communication for 6 months, then your data will be removed from our system.  If you are a customer of ours, we will retain contact and accounts information for 7 years as required by law.

In addition, ilateral limited retains contact information which has come from other sources (ie emails) for business purposes and marketing.  However, no information is passed to third parties and no marketing activity is carried out with this data without the express written permission of the parties involved. 

Requests for data held

We will respond to all requests for data which we hold and supply all information within 30 days.  Please contact our Data Protection Officer, Morven Lewis-Everley via email ([email protected]) or phone (01594 860082).

If your information requires updating, please contact the DPO with the amends you need to make.  We will validate and make the changes as requested and inform you of the data we have.

requests for removal of records

We will remove personal data on your request, provided that there is no detriment to our business operations and legal responsibilities to HMRC. Requests must be made in writing and can be submitted to ilateral's DPO on the email above.  We will then validate ownership of the data and remove it as follows:-

  • All hard copy paperwork will be cross-shredded
  • All emails will be deleted
  • All project files containing personal data will be deleted

Once data has been removed from all storage, a record is kept of the deletion activity and a written response will be sent to you confirming the data we have removed.

Breach of Data

We will inform individuals of any breach of data if it will have a negative impact on the privacy of that individual.  We have systems in place to monitor server activity and all access to servers is restricted to ilateral staff and designated users.  The data centres are certified to ISO 27001 and 9001.

ilateral also has a local, secure backup of project data which has restricted access.