skip to main content
Apply now

Data protection policy

Context and overview

 

Introduction

The Intern Group needs to gather and use certain information about individuals.

These can include customers, suppliers, business contacts, employees and other people the organisation has a relationship with or may need to contact.

This policy describes how this personal data must be collected, handled and stored to meet the company’s data protection standards – and to comply with the law.

 

Why this policy exists

This data protection policy ensures The Intern Group:

 

 

People, risks and responsibilities

Policy scope

This policy applies to:

It applies to all data that the company holds relating to identifiable individuals. This can include:

 

Data protection risks

This policy helps to protect The Intern Group from some very real data security risks, including:

Breaches of confidentiality – for instance, information being given
out inappropriately.

Reputational damage – for instance, the company could suffer if hackers successfully gained access to sensitive data.

Responsibilities

Everyone who works for or with The Intern Group has some responsibility for ensuring data is collected, stored and handled appropriately.

Employees should keep all data secure, by taking sensible precautions and following the guidelines in this policy.

In particular, strong passwords must be used.

Personal data should not be disclosed to unauthorised people.

Data should be regularly reviewed and updated if it is found to be out of date. If no longer required, it should be deleted and disposed of.

 

 

Data storage

These rules describe how and where data should be safely stored.

When data is stored on paper, it should be kept in a secure place where unauthorised people cannot see it.

When data is stored electronically, it must be protected from unauthorised access, accidental deletion and malicious hacking attempts:

 

 

Data use

Personal data is of no value to The Intern Group unless the business can make use of it. However, it is when personal data is accessed and used that it can be at the greatest risk of loss, corruption or theft:

 

 

Providing information

The Intern Group aims to ensure that individuals are aware that their data is being processed, and that they understand:

To these ends, the company has a privacy statement, setting out how data relating to individuals is used by the company. This is available on request.