Day Away Rentals believes that all records required for the protection of customers and the effective and efficient running of the business should be collected, maintained, and kept according to The General Data Protection Regulation 2018. At Day Away Rentals, we adhere to the rights and best interests of user’s, clients, customers, suppliers and 3rd party contractors and are safeguarded by keeping accurate and up-to-date records.

​

Day Away Rentals as a business is required to be registered with the XXXXXX. The storage and processing of all personal data held within our organisation, hard copy or digital devices and systems must comply with the Act. 

 

At Day Away Rentals we understand that, according to The Data Protection Regulation 2018, personal data should:

​

1.   be obtained fairly and lawfully

2.   be held for specified and lawful purposes

3.   be processed in accordance with the person’s rights under the Data Protection Act

4.   be adequate, relevant and not excessive in relation to that purpose

5.   be kept accurate and up to date

6.   not be kept for longer than is necessary for its given purpose

7.   be subject to appropriate safeguards against unauthorised use, loss or damage

8.   be transferred outside the European Economic Area only if the recipient country has adequate data protection.

​

Under The General Data Protection Regulation 2018, Day Away Rentals has a nominated Data Controller and a Data Protection Officer who can be contacted at our head office on XXXXXX. 

1.   This Regulation requires the organisation to respond to requests for access to personal data within 30 working days “Subject Access Request”.

​

Training

Staff are required to understand the policies on data protection and confidentiality as part of their induction process. Existing staff have ongoing training covering information about confidentiality, data protection and access to data.