Data protection policy

We shall adhere to the six principles of data protection, which are:

• Principle 1: Personal data shall be processed fairly and lawfully and in a transparent manner.
• Principle 2: Personal data shall be collected for specified, explicit and legitimate purposes shall not be processed in a manner incompatible with that purpose.
• Principle 3: Personal data shall be adequate, relevant and limited to what is necessary for the purpose.
• Principle 4: Personal data shall be accurate and, where necessary kept up to date.
• Principle 5: Personal data shall be kept in a form that permits identification for no longer than necessary.
• Principle 6: Personal data shall be processed in a manner that ensures appropriate security.
• In addition, we shall ensure that we comply with the 'accountability principle'.  This requires us to have appropriate processes and records in place to demonstrate our compliance with the principles listed above.