Last Updated: January 2024
agile-leap is committed to ensuring the protection of personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This page outlines how we comply with these regulations and explains your rights regarding your personal data.
agile-leap acts as the data controller for personal information collected through this website and our services. Our contact details are:
agile-leap
45 Commerce Street
Manchester, M2 4WQ
United Kingdom
Email: [email protected]
Under GDPR, we must have a lawful basis for processing your personal data. We rely on the following legal bases:
Under GDPR, you have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you. We will provide this information within one month of your request, free of charge in most circumstances.
You have the right to request that we correct any inaccurate personal data we hold about you, or complete any incomplete data.
You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purpose it was collected, or when you withdraw consent.
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller without hindrance.
You have the right to object to the processing of your personal data in certain circumstances, including processing for direct marketing purposes.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.
To exercise any of your rights under GDPR, please contact us using the following methods:
We will respond to your request within one month. In complex cases, we may extend this period by up to two additional months, but we will inform you of any extension within the first month.
We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay.
If we transfer personal data outside the UK or EEA, we ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission or reliance on an adequacy decision.
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. The specific retention periods vary depending on the type of data and the purpose of processing.
Where we engage third-party processors to handle personal data on our behalf, we ensure that appropriate contracts are in place that require the processor to implement appropriate security measures and process data only in accordance with our instructions.
If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire, SK9 5AF
Website: ico.org.uk
We may update this GDPR compliance information from time to time. Any changes will be posted on this page with an updated revision date.