The General Data Protection Regulation (GDPR) came into force in the UK on 25 May 2018 and replaced the previous Data Protection Act of 1998.
The GDPR applies to personal data and has been introduced to keep pace with the modern digital landscape. The new regulation gives greater protection to individuals in terms of how their data may be stored and used. Companies are required to have clear policies and procedures in place to protect personal data, as well as the necessary technical and organisational measures to support them.
Frontier Agriculture Ltd is committed to protecting the data of our suppliers, customers and employees. We follow the key principles of the GDPR, ensuring personal data is:
- 1) Processed lawfully, fairly and in a transparent manner
- 2) Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes
- 3) Adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed
- 4) Accurate and where necessary, kept up to date; every reasonable step will be taken to ensure that personal data that is inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay
- 5) Kept for no longer than is necessary for the purposes for which the personal data is processed
- 6) Processed in a manner that ensures appropriate security, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
The Frontier Group has appointed a GDPR Program Board which has responsibility for ensuring the company’s compliance with data protection regulation. All Group employees are required to complete regular training on the principles of GDPR. A range of policies and a full communications plan has been put in place to ensure that all employees are aware of their responsibilities.