Identity Gram
HomeAbout UsServicesPricingCareersContact Us
Data Protection Policy
1. Introduction

This Data Protection Policy outlines the principles and measures adopted by Identity Gram to ensure the security, privacy, and lawful processing of personal data. We are committed to protecting the rights of individuals whose data we collect and process.

2. Scope

This policy applies to all personal data collected, stored, processed, and shared by Identity Gram through our platform, services, and interactions with users, clients, and partners.

3. Data Collection and Processing

We collect and process personal data for identity verification and service improvement. All data collected is:
  • Obtained lawfully and fairly.
  • Collected for specific, explicit, and legitimate purposes.
  • Adequate, relevant, and limited to what is necessary.
  • Accurate and kept up to date.
  • Retained only for as long as necessary.

4. Data Security

We implement technical and organisational measures to protect personal data from unauthorised access, disclosure, alteration, or destruction. These include encryption, access controls, regular security assessments, and staff training.

5. Data Sharing and Transfers

We may share personal data with carefully selected third-party service providers who are contractually bound to maintain data confidentiality and security. Any data transfers outside of your jurisdiction comply with applicable data protection laws.

6. User Rights

Individuals have the following rights regarding their personal data:
  • Right to Access Request details of the personal data we hold
  • Right to Rectification Request corrections to inaccurate or incomplete data.
  • Right to Erasure Request deletion of personal data.
  • Right to Restriction Request limitation of processing under certain conditions
  • Right to Data Portability Request personal data in a structured, machine-readable format.
  • Right to Object Object to processing for specific purposes

7. Data Breach Management

In the event of a data breach, we will promptly assess the impact, mitigate risks, and notify affected individuals and authorities as required by law.

8. Compliance and Accountability

We comply with applicable data protection laws and regulations. Our staff undergo training on data protection principles and their responsibilities under this policy.

9. Updates to This Policy

We may update this policy periodically to reflect changes in our practices, legal requirements, or industry standards. The latest version will always be available on our website.

10. Contact Information

For any questions, concerns, or requests related to data protection, please contact our Data Protection Officer at info@identitygram.co.uk.