PRIVACY POLICY

PALLORA Ltd. Privacy and Data Protection Policy

Purpose
The purpose of this Privacy and Data Protection Policy is to outline how PALLORA Ltd. collects, uses, stores, and protects personal data. This policy ensures compliance with applicable data protection regulations, including the General Data Protection Regulation (GDPR), and demonstrates our commitment to safeguarding the privacy rights of individuals.
 

Scope
This policy applies to all personal data processed by PALLORA Ltd., including data related to clients, candidates, partners, and any other individuals whose personal information we handle. It applies to all forms of data, whether collected electronically or in hard copy.
 

Data Collection
PALLORA Ltd. only collects personal data that is necessary for the operation of our business. The types of personal data we may collect include:


Client Information: Names, contact details, and business-related information.
Candidate Information: Resumes, contact details, employment history, and other relevant details
for placement or recruitment purposes.
Third-Party Information: Information from suppliers, partners, or vendors as necessary for business transactions.
 

Lawful Basis for Processing
We process personal data under the following lawful bases:


Consent: When individuals have given clear consent for us to process their personal data for specific purposes.
Contractual: When processing is necessary for the performance of a contract with the individual.
Legal Obligation: When processing is necessary to comply with the law.
Legitimate Interests: When processing is necessary for the legitimate interests of PALLORA Ltd., except where such interests are overridden by the individual’s data protection rights.
 

Data Use
Personal data collected by PALLORA Ltd. is used for the following purposes:


Providing services to clients and candidates.
Communicating with clients, candidates, and partners.
Managing business operations, including contracts, billing, and legal compliance.
Improving our services and client experience.
 

Data Sharing
PALLORA Ltd. will not share personal data with third parties except in the following circumstances:


Service Providers: We may share data with third-party service providers (e.g., Reflow, Sonovate) to facilitate our business operations, under strict contractual obligations to protect the data.
Legal Requirements: We may disclose data when required by law or to protect our legal rights.
Consent: We may share data with third parties if we have obtained explicit consent from the data subject.
 

Data Storage and Retention
Storage: Personal data is stored securely using appropriate technical and organisational measures to protect against unauthorised access, loss, or destruction.
Retention: Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations. Once data is no longer needed, it is securely deleted or anonymised.
 

Data Subject Rights
Individuals have the following rights regarding their personal data:


Right to Access: The right to request access to the personal data we hold about them.
Right to Rectification: The right to request correction of inaccurate or incomplete data.
Right to Erasure: The right to request the deletion of their personal data, where applicable.
Right to Restrict Processing: The right to request that we limit the processing of their data.
Right to Data Portability: The right to receive their data in a commonly used format and to transfer it to another controller.
Right to Object: The right to object to the processing of their personal data based on legitimate interests.
Requests to exercise any of these rights should be directed to the contact details provided below.
 

Data Security
PALLORA Ltd. takes data security seriously and implements appropriate technical and organisational measures to protect personal data, including:


Encryption of sensitive data.
Regular security assessments and updates.
Secure access controls and authentication measures.
 

Breach Notification
In the event of a data breach, PALLORA Ltd. will notify the relevant supervisory authority within 72 hours and will inform affected individuals without undue delay if the breach is likely to result in a high risk to their rights and freedoms.

Policy Review and Updates
This Privacy and Data Protection Policy is reviewed regularly to ensure it remains current and compliant with legal requirements. Updates to the policy will be communicated to all relevant stakeholders.
 

Contact Information
For any questions or requests related to this policy or the handling of personal data, please contact:
 

Data Protection Officer (DPO): Kevin Elston
Email: info@PALLORA.co.uk
 

Approval
This Privacy and Data Protection Policy is approved by the director of PALLORA Ltd. and is effective as of 25 November 2024.
 

Document Control
Version: 1.0
Effective Date: 25 November 2024
Review Date: 24 November 2025

Logo

©2025 All rights reserved.

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.

Privacy Settings

Website Translator

Google Maps

Privacy Settings

This tool helps you to select and deactivate various tags / trackers / analytic tools used on this website.

Select all services
Website Translator
More
Google Maps
More
Save Settings