Albion Rebates Ltd β GDPR Compliance Pack
πΉ 1. Privacy Policy
Albion Rebates Ltd (βweβ, βusβ, βourβ) is committed to protecting and respecting your privacy.
This policy explains how we collect, use, and protect your personal data in accordance with UK GDPR and the Data Protection Act 2018.
πΈ What Information We Collect
We may collect and process the following data:
- Full name
- Date of birth
- National Insurance number
- Address and contact details
- Employment and income details
- Tax-related information
- Identification documents
πΈ How We Use Your Information
We use your data to:
- Process PAYE tax rebate claims
- Communicate with HMRC on your behalf
- Verify your identity
- Comply with legal and regulatory obligations
- Improve our services
πΈ Legal Basis for Processing
We process your data under:
- Your consent
- Performance of a contract
- Legal obligations
πΈ Data Sharing
We may share your data with:
- HM Revenue & Customs (HMRC)
- Regulatory authorities where required
- Secure third-party service providers
We do not sell your personal data.
πΈ Data Retention
We retain your data for up to 5 years to comply with legal and tax obligations.
πΈ Your Rights
You have the right to:
- Access your data
- Correct inaccurate data
- Request deletion (where applicable)
- Restrict or object to processing
To exercise your rights, contact us at: [Your Email]
πΈ Data Security
We take appropriate measures to protect your data, including:
- Secure storage systems
- Restricted access
- Encryption where appropriate
πΈ Contact
For any privacy concerns, contact:
Albion Rebates Ltd
[admin@albionrebates.com]
[+44 7729 476759]
πΉ 2. Data Handling & Protection Policy (Internal Use)
πΈ Responsibility
The company director is responsible for data protection compliance.
πΈ Data Collection
- Only collect necessary data
- Ensure client consent is obtained
- Use secure forms or encrypted systems
πΈ Data Storage
- Store data securely (password-protected systems)
- Limit access to authorised personnel only
- Avoid storing sensitive data on personal devices
πΈ Data Sharing
- Only share data where necessary
- Ensure third parties are GDPR compliant
- Keep records of data sharing
πΈ Data Retention
- Retain data for 5 years
- Securely delete data after this period
πΈ Data Breach Procedure
In the event of a data breach:
- Identify and contain the breach
- Assess risk to individuals
- Report to ICO within 72 hours (if required)
- Inform affected individuals if necessary
- Record the incident and corrective actions
πΈ Staff Awareness
- Ensure anyone handling data understands GDPR basics
- Maintain confidentiality at all times
πΉ 3. Data Subject Access Request (DSAR) Procedure
If a client requests access to their data:
- Request must be acknowledged within 48 hours
- Verify identity of requester
- Provide data within 30 days
- Keep record of request and response
πΉ 4. Consent Statement (For Forms)
βI consent to Albion Rebates Ltd collecting and processing my personal data for the purpose of managing my PAYE tax rebate claim.β
πΉ 5. Data Retention & Deletion Policy
- Keep client records for 5 years
- After retention period:
- Delete digital files securely
- Shred physical documents
- Ensure backups are also cleared
πΉ 6. Security Measures Checklist
β Password-protected systems
β Secure email practices
β Limited staff access
β Regular software updates
β Use of encrypted storage where possible
πΉ 7. Compliance Statement
Albion Rebates Ltd is committed to complying with all applicable data protection laws and ensuring that personal data is handled responsibly, securely, and transparently.
Albion Rebates Ltd
Data Protection Responsible Person: Company Director
Albion Rebates | Qualified Tax Rebate Accountants - Getting you what your owed 