GDPR
Our commitment to GDPR compliance and data privacy.
sassy-automax respects the General Data Protection Regulation and handles personal data with transparency and care.
Legal basis for processing
Contractual necessity
We process data to deliver services agreed within client engagements.
Legitimate interests
We evaluate engagement outcomes and improve programme quality.
Consent
Where required, we seek explicit consent for non-essential data usage.
Data subject rights
You have the right to access, rectify, erase, restrict, or object to processing of your data. You also have the right to data portability and to withdraw consent at any time.
Data transfers and security
Data is stored within secure systems with access restricted to authorised team members. When we share data with service providers, we ensure they adhere to GDPR requirements.
Retention policy
Personal data is retained only for the period required to deliver the service and meet regulatory obligations. We review records annually.
Raising a concern
If you have questions about GDPR compliance or wish to submit a data request, contact [email protected]. You may also lodge a complaint with the UK Information Commissioner’s Office.