Zena Wigram

Privacy policy

I take your privacy seriously. I will not share your personal information with anyone else.

I comply with the General Data Protection Regulation (GDPR), the Data Protection Act 2018 and the Privacy and Electronic Communications Regulations 2003.

As part of my work, I will need to store information about you, and, where relevant, your company electronically.

As part of my commitment to protect personal data, I will:

  • treat your personal information with integrity and confidentiality
  • keep your data secure
  • report any potential loss of data to the Information Commissioner’s Office as soon as I become aware of it.

In line with GDPR, all the personal data I may collect will be:

  • processed lawfully, fairly and in a transparent manner
  • collected only for specified, explicit and legitimate purposes
  • adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed
  • accurate and where necessary kept up to date
  • not kept in a form which permits identification of data subjects for longer than necessary
  • processed in a way that keeps it secure, using passwords and other ways to protect it from unauthorised processing, loss, destruction or damage
  • not transferred to another country without appropriate safeguards being in place
  • available to data subjects if they ask for it
  • able to be changed or deleted if a data subject requests that.

I process your personal data fairly and for the lawful bases set out by the GDPR:

  • You have given your consent
  • I have to process the data to carry out a contract with you (to provide you with marketing services, to coach you, or to perform with or for you
  • to meet my legal compliance obligations.

I am most unlikely to use these lawful bases:

  • the processing is necessary to protect the person’s life;
  • to perform a task in the public interest or for an official function, where the task or function has a clear basis in law.
  • to pursue my legitimate interests (or those of a third party) as long as these are not overridden by your interests or fundamental rights and freedoms.

I am acting as a data controller. You can tell me at any time if you want me to stop using your personal data.

  • I will ensure that the personal data I use and hold is accurate, complete, kept up to date and relevant.
  • I will destroy or correct inaccurate or out-of-date personal data.
  • I will only keep personal data for as long as I have to by law.
  • If I find out about a personal data breach, I will let the people involved know, and I will also tell the Information Commissioner’s Office.

If I have your personal data on file, you have the right to

  • withdraw consent to processing
  • ask me how I process your data
  • ask me to tell you what data I have
  • tell me not to use your data for direct marketing
  • ask me to erase your data, or to correct anything that is inaccurate data or incomplete. If you ask me not to contact you again, I will need to keep a small amount of information to make sure I honour that request.
  • make a complaint to the Information Commissioner’s Office
  • ask me to transfer your data to a third party in a structured, commonly used and machine-readable format.

I will need to identify you carefully if you ask me to do any of the above.