Privacy

Privacy Statement

All personal data is recorded, used and deleted by Warm Street Limited (Warm) strictly in line with the usage, data security and deletion statements made by Warm for which permission of use is confirmed by the provider of the personal data.

Data Security standards and the use of personal data strictly conform to GDPR May 2018 compliance and the highest grades of UK and International Data Security standards.

Warm have internal policies and controls in place to ensure that personal data is not lost or misused. Warm use a cloud-based system to store personal data that requires 2 factor authentications. Physical documents containing personal data are kept under lock and key in filing cabinets/rooms.

Where Warm engage third parties to process personal data on its behalf, they do so on the basis of written instructions, are under a duty of confidentiality and are obliged to implement appropriate measures to ensure the security of data.

The organisation will hold personal data for the duration stated for the permission of use confirmed by the provider of the personal data.  

As a data subject, those providing personal data may:

– Access and obtain a copy of their personal data on request;  Require Warm to change incorrect or incomplete data;
– Require Warm to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing; and
– Object to the processing of their personal data where we are relying on its legitimate interests as the legal ground for processing.  

Those wishing to exercise any of these rights, please contact theo@warmstreet.com.

Those who believe that Warm have not complied with their data protection rights, may complain to the Information Commissioner.