Data Protection Policy

At Mustard Seed, we are committed to protecting the privacy and security of personal data in compliance with the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR).

Key principles:

• We collect and process personal data only for legitimate business purposes and with appropriate consent where required.

• We ensure that personal data is processed lawfully, fairly, and transparently.

• We limit data collection to what is necessary and ensure it is accurate and up to date.

• We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or misuse.

• We retain personal data only for as long as necessary and securely dispose of it when no longer required.

• We respect individuals' rights regarding their personal data, including the right to access, rectify, and erase their information.

• We ensure that any third parties processing data on our behalf adhere to these principles and our data protection standards.

• We promptly report any data breaches to the relevant authorities and affected individuals as required by law.

Our employees receive regular training on data protection responsibilities, and we have appointed a Data Protection Officer to oversee our compliance.

Mustard Seed is committed to continually reviewing and improving our data protection practices to ensure the highest standards of data privacy and security.

For any queries regarding our data protection practices or to exercise your rights under data protection law, please contact our Data Protection Officer.

This policy applies to all personal data processed by Mustard Seed, whether relating to employees, clients, suppliers, or other individuals we interact with in the course of our business.