Privacy Policy
1. Introduction
This Data Privacy Policy outlines how The CCC Group ( CCC ) collects, uses, stores, and protects personal data in the course of its business operations. We are committed to safeguarding the privacy and security of personal information entrusted to us by our customers, employees, and other stakeholders.
2. Scope
This policy applies to all personal data collected, processed, and stored by CCC in connection with its business activities. It applies to all employees, contractors, and third parties who handle personal data on our behalf.
3. Principles for Processing Personal Data
Lawfulness, Fairness, and Transparency:
We will collect and process personal data fairly, lawfully, and transparently.
Purpose Limitation:
Personal data will be collected for specified, explicit, and legitimate purposes and will not be further processed in a manner that is incompatible with those purposes.
Data Minimization:
We will only collect personal data that is necessary for the purposes for which it is processed.
Accuracy:
We will take reasonable steps to ensure that personal data is accurate and, where necessary, kept up to date.
Storage Limitation:
Personal data will be kept in a form that permits identification of individuals for no longer than is necessary for the purposes for which it is processed.
Integrity and Confidentiality:
Personal data will be processed securely and protected against unauthorized or unlawful processing and accidental loss, destruction, or damage.
4. Types of Personal Data Collected
We may collect and process the following types of personal data:
-
Contact information (e.g., name, address, email address, phone number)
-
Any other information necessary for the purposes outlined in this policy.
5. Purposes of Processing
We collect and process personal data for the following purposes:
-
Providing products or services requested by customers
-
Communicating with customers and responding to inquiries
-
Compliance with legal obligations
6. Data Subject Rights
Individuals whose personal data we process have the following rights:
-
Right to access their personal data
-
Right to rectify inaccuracies or incomplete data
-
Right to erasure (‘right to be forgotten’) under certain circumstances
-
Right to restrict processing under certain circumstances
-
Right to data portability in a structured and commonly used format
-
Right to object to processing based on legitimate interests or direct marketing
-
Rights in relation to automated decision-making and profiling
Requests to exercise these rights should be directed to info@carbonconsultco.com.
7. Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction, or damage. Access to personal data is restricted to employees and authorised third parties who need to know that information.
8. Data Breach Notification
In the event of a personal data breach involving personal data that poses a risk to individuals' rights and freedoms, we will notify affected individuals and the relevant supervisory authority in accordance with legal requirements.
9. Policy Review
This Data Privacy Policy will be reviewed periodically to ensure that it remains up to date and compliant with applicable data protection laws and regulations.
10. Contact Information
For questions or concerns regarding this Data Privacy Policy or our data protection practices, please contact info@carbonconsultco.com.
This policy aims to ensure transparency, accountability, and the protection of personal data in our operations as a small business.