This Data Protection Policy outlines how Ops Apps Ltd complies with the provisions of UK data protection legislation, including the Data Protection Act 2018 (DPA 2018) and the UK General Data Protection Regulation (UK GDPR). As a provider of Software as a Service (SaaS) to businesses, we are committed to ensuring the protection and confidentiality of personal data related to users of our software.
This policy applies to all employees, contractors, and third parties who have access to or process personal data on behalf of Ops Apps Ltd. It covers all personal data processed and held by Ops Apps Ltd, including data provided by our clients in their capacity as Data Controllers.
Any information relating to an identified or identifiable natural person.
The organization or individual that determines the purposes and means of processing
personal data.The organization or individual that processes personal data on behalf of the Data Controller.
Any operation or set of operations performed on personal data, whether by automated means or not.
The DPO is responsible for overseeing this data protection policy and ensuring compliance with data protection legislation.
All employees are required to adhere to this policy and to ensure that personal data is processed in accordance with the principles set out herein.
Ops Apps Ltd is committed to processing personal data in accordance with the following principles:
Personal data shall be processed lawfully, fairly, and in a transparent manner.
Personal data shall be collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
Personal data shall be adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
Personal data shall be accurate and, where necessary, kept up to date.
Personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary.
Personal data shall be processed in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
In our role as a Data Processor, Ops Apps Ltd shall:
Process personal data only on documented instructions from the Data Controller.
Ensure that persons authorized to process personal data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality.
Implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.
Assist the Data Controller in ensuring compliance with their obligations concerning data subject rights.
At the choice of the Data Controller, delete or return all personal data to the Data Controller after the end of the provision of services.
Make available to the Data Controller all information necessary to demonstrate compliance with these obligations and allow for and contribute to audits, including inspections, conducted by the Data Controller or another auditor mandated by the Data Controller.
Ops Apps Ltd shall implement and maintain appropriate technical and organizational measures to protect personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
In the event of a data breach, Ops Apps Ltd will notify the Data Controller without undue delay. We will provide sufficient information to allow the Data Controller to meet any obligations to report or inform data subjects of the data breach under UK data protection legislation.
This policy will be reviewed and updated regularly to ensure continued compliance with UK data protection legislation and to reflect any changes in our processing activities.
For any questions regarding this policy or data protection matters in general, please contact our Data Protection Officer (DPO) at: data.protection@ops-apps.com
By adhering to this policy, Ops Apps Ltd ensures the protection, confidentiality, and integrity of personal data while providing best-in-class SaaS solutions to our clients.