Data Protection and Privacy Policy

1.1 Purpose

To ensure the lawful and ethical collection, use, storage, and sharing of personal data, in line with the UK General Data Protection Regulation (UK GDPR), BVI Data Protection Act, and other applicable laws.

1.2 Scope

Applies to all personal data processed by Charity Accounting Partners, including client, employee, and third-party data.

1.3 Principles of Data Protection

• Lawfulness, fairness, and transparency: Data is processed lawfully and transparently.

• Purpose limitation: Data is used only for the stated purposes.

• Data minimisation: Only necessary data is collected.

• Accuracy: Data is kept accurate and up to date.

• Storage limitation: Data is retained only as long as necessary.

• Security: Strong measures protect data from unauthorised access.

1.4 Data Security and Breach Management

• Encryption: Sensitive financial and personal data must be encrypted.

• Access Controls: Data access is restricted to authorised personnel.

• Breach Reporting: Any suspected data breaches must be reported within 24 hours and escalated to authorities if required.

1.5 Individual Rights

Individuals have the right to:

• Access, correct, or delete their data.

• Restrict or object to data processing.

• Withdraw consent at any time.

For any queries regarding this policy, please contact us at support@charityaccountingpartners.co.uk.

Charity Accounting Partners Helping Charities Thrive Financially

Last updated: February 2025