Whilst it is the Company's aim to prevent data breaches where possible, we do recognise that human error and risk elements occur in business that prevent the total elimination of any breach occurrence. We also have a duty to develop protocols for data breaches to ensure that employees, regulating and/or accreditation bodies are aware of how we handle any such breach.
This policy applies to all staff within the Company (meaning permanent, fixed term, 0 hours and temporary staff, any third-party representatives or sub-contractors, agency workers, and agents engaged with the Company in the UK), and relates to the processing of personal information. Adherence to this policy is mandatory and noncompliance could lead to disciplinary action or the termination of contracts for services
Data Security & Breach Requirements
The Company's definition of a personal data breach for the purposes of this policy is any breach of security, lack of controls, system or human failure, error or issue that leads to, or results in, the destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.