Albion Rebates Ltd โ GDPR Compliance Pack
๐น 1. Privacy Policy
Albion Rebates Ltd (โweโ, โusโ, โourโ) is committed to protecting and respecting your privacy.
This policy explains how we collect, use, and protect your personal data in accordance with UK GDPR and the Data Protection Act 2018.
๐ธ What Information We Collect
We may collect and process the following data:
- Full name
- Date of birth
- National Insurance number
- Address and contact details
- Employment and income details
- Tax-related information
- Identification documents
๐ธ How We Use Your Information
We use your data to:
- Process PAYE tax rebate claims
- Communicate with HMRC on your behalf
- Verify your identity
- Comply with legal and regulatory obligations
- Improve our services
๐ธ Legal Basis for Processing
We process your data under:
- Your consent
- Performance of a contract
- Legal obligations
๐ธ Data Sharing
We may share your data with:
- HM Revenue & Customs (HMRC)
- Regulatory authorities where required
- Secure third-party service providers
We do not sell your personal data.
๐ธ Data Retention
We retain your data for up to 5 years to comply with legal and tax obligations.
๐ธ Your Rights
You have the right to:
- Access your data
- Correct inaccurate data
- Request deletion (where applicable)
- Restrict or object to processing
To exercise your rights, contact us at: [Your Email]
๐ธ Data Security
We take appropriate measures to protect your data, including:
- Secure storage systems
- Restricted access
- Encryption where appropriate
๐ธ Contact
For any privacy concerns, contact:
Albion Rebates Ltd
[admin@albionrebates.com]
[+44 7729 476759]
๐น 2. Data Handling & Protection Policy (Internal Use)
๐ธ Responsibility
The company director is responsible for data protection compliance.
๐ธ Data Collection
- Only collect necessary data
- Ensure client consent is obtained
- Use secure forms or encrypted systems
๐ธ Data Storage
- Store data securely (password-protected systems)
- Limit access to authorised personnel only
- Avoid storing sensitive data on personal devices
๐ธ Data Sharing
- Only share data where necessary
- Ensure third parties are GDPR compliant
- Keep records of data sharing
๐ธ Data Retention
- Retain data for 5 years
- Securely delete data after this period
๐ธ Data Breach Procedure
In the event of a data breach:
- Identify and contain the breach
- Assess risk to individuals
- Report to ICO within 72 hours (if required)
- Inform affected individuals if necessary
- Record the incident and corrective actions
๐ธ Staff Awareness
- Ensure anyone handling data understands GDPR basics
- Maintain confidentiality at all times
๐น 3. Data Subject Access Request (DSAR) Procedure
If a client requests access to their data:
- Request must be acknowledged within 48 hours
- Verify identity of requester
- Provide data within 30 days
- Keep record of request and response
๐น 4. Consent Statement (For Forms)
โI consent to Albion Rebates Ltd collecting and processing my personal data for the purpose of managing my PAYE tax rebate claim.โ
๐น 5. Data Retention & Deletion Policy
- Keep client records for 5 years
- After retention period:
- Delete digital files securely
- Shred physical documents
- Ensure backups are also cleared
๐น 6. Security Measures Checklist
โ Password-protected systems
โ Secure email practices
โ Limited staff access
โ Regular software updates
โ Use of encrypted storage where possible
๐น 7. Compliance Statement
Albion Rebates Ltd is committed to complying with all applicable data protection laws and ensuring that personal data is handled responsibly, securely, and transparently.
Albion Rebates Ltd
Data Protection Responsible Person: Company Director