business bank account
|
guaranteed bank account for business
|
bank account
|
Guaranteed Business Bank Account |
company formation
Data Protection Notification
Back to Data Pro. Page
fffff
DATA PROTECTION - Notification to add your Company to the Data Register
Data Controller and Contact details
Please begin your notification by providing the Data Controllers details and the Contact Details of the person or department who is responsible for maintaining the notification. The Contact Details will only be used for correspondence and will not appear on the public register.
Data Controller Details - (Data controller means a person who (either alone or jointly or in common with other persons) determines the purposes for which, and the manner in which, any personal data are, or are to be, processed.)
Data Controller
Address 1
Address 2
Address 3
Address 4
Address 5
Post Code
Company Name
Company Registration Number
Trading Names
Contact Details - Must be in the UK - (The Contact Details will only be used for correspondence and will not appear on the public register.)
Contact Name
Address 1
Address 2
Address 3
Address 4
Address 5
Post Code
Telephone Number
Fax Number
Email
Back
Next
Data Controller continued
• If the Data Controller address is outside the UK or any other EEA state you MUST complete the representative name and address. This address must be a UK address for the notification to be valid.
Data controller lives:
In the UK - Go to next Page
Outside UK - complete form below to include a UK Representative
Representatives Name
Address 1
Address 2
Address 3
Address 4
Address 5
Post Code
Telephone Number
Email
Back
Next
Template Categories
Your notification must include a general description of the processing of personal data being carried out.
This processing description includes:
• The purposes for which personal data are being or are to be processed e.g. provision of financial services and advice • a description of the data subjects about whom data are or are to be held e.g. customers and clients • a description of the data classes e.g. personal details, financial details • a list of the recipients of data e.g. financial organisations and advisors • information about whether data are transferred outside the European Economic Area (EEA)
Your processing discription:
Templated notifications have been constructed based on your nature of business.The templates have been split into a number of categories that are listed below, it is possible to come back to this list if the initial category you pick doesn't contain a template that suits your nature of business.
Please select one of the categories below to continue:
Education
General
Legal
Local
Local and Central Government
Finance
Health
Leisure
Public Bodies
Religious / Political / Charitable
Services
Please give a full detailed discription of your Company's nature of your business i.e Accountancy dealing with small to medium businesses, providing full accountancy services including; book keeping, PAYE, CIS, Payroll, VAT etc :
Full Discription:
Back
Next
Security Statement (Mandatory)
As part of the notification process, a data controller is required to provide a general description of the security measures taken to guard against unauthorised or unlawful processing of personal data and against accidental loss, destruction or damage. It is a requirement of the 1998 Data Protection Act but will not form part of the public register.
Do the measures taken by you include:
1). Adopting an information security policy? (i.e. providing clear management direction on responsibilities and procedures in order to safeguard personal data)
Adopting an information security policy? (i.e. providing clear management direction on responsibilities and procedures in order to safeguard personal data)
Yes
No
2). Putting in place controls on access to information? (for example, introduction of password protection on files containing personal data and encryption)
Putting in place controls on access to information? (for example, introduction of password protection on files containing personal data and encryption)
Yes
No
3). Taking steps to control physical security? (for example, locking doors of the office or building where computer equipment is held)
Taking steps to control physical security? (for example, locking doors of the office or building where computer equipment is held)
Yes
No
4). Establishing a business continuity plan? (for example, holding a backup file in the event of personal data being lost through flood, fire or other catastrophe)
Establishing a business continuity plan? (for example, holding a backup file in the event of personal data being lost through flood, fire or other catastrophe)
Yes
No
5). Training your staff on security systems and procedures? (for example, are staff aware of their responsibilities, are they aware that personal data should only be accessed for business purposes?)
Training your staff on security systems and procedures? (for example, are staff aware of their responsibilities, are they aware that personal data should only be accessed for business purposes?)
Yes
No
6). Detecting and investigating breaches of security when they occur? (for example, producing audit trails that log access to personal data and can be attributed to a particular person)
Detecting and investigating breaches of security when they occur? (for example, producing audit trails that log access to personal data and can be attributed to a particular person)
Yes
No
Back
Next
Statement of Exempt Processing
Does your notification cover all your processing of all personal data?
Does your notification cover all your processing of all personal data?
Yes
No
Voluntary Notification
If you are exempt from notification but you have decided to notify voluntarily please choose yes
If you are exempt from notification but you have decided to notify voluntarily please choose yes
Yes
No
Public Authorities
Is the data controller a public authority under the Freedom of Information Act 2000 or a Scottish public authority under the Freedom of Information (Scotland) Act 2002?
Is the data controller a public authority under the Freedom of Information Act 2000 or a Scottish public authority under the Freedom of Information (Scotland) Act 2002?
Yes
No
By choosing 'Yes', the following statement will be added to your notification:
"This data controller states that it is a public authority under the Freedom of Information Act 2000 or a Scottish public authority under the Freedom of Information (Scotland) Act 2002"
A data controller who is either,
• a public authority for the purposes of the Freedom of Information Act 2000 (FOIA) in England, Wales and Northern Ireland, or
• a Scottish public authority for the purposes of the Freedom of Information (Scotland) Act 2002 (FOI(S)A)
... must declare this fact within its Data Protection Notification.
Schedule 1 in each Act sets out those organisations which are specified as public authorities and includes:
• Central Government, Scottish Ministers and the Scottish Parliament
• Local Authorities
• Schools and Colleges
• Police and prosecuting bodies
• Doctors, Dentists, Opticians and Pharmacists
The above list is not exhaustive; additional guidance on which organisations are considered to be public authorities can be found,
• on Government website, www.ico.gov.uk
Back
Next
Submit Form
Should be Empty:
Please note there is no need to register for a PayPal account when you make payment.
