Small business systems Waylight Atlantic

UK GDPR summary

How Waylight Atlantic applies the core data-protection principles.

This page summarises the standards used for fairness, minimisation, security, and accountability when handling personal information.

Dunfannaghy coastline artwork
Data-protection standards

Principles

  • Process information lawfully, fairly, and transparently.
  • Collect only what is needed for the stated purpose.
  • Keep information accurate and up to date where practical.
  • Retain information only for as long as necessary.
  • Protect information through appropriate security measures.
  • Maintain accountability for how information is handled.

Typical lawful bases

  • Legitimate interests in receiving and responding to enquiries.
  • Steps taken before entering into a contract for quotes or service discussions.
  • Legal obligations where records must be retained for accounting or regulatory reasons.
  • Consent where an optional browser preference is stored at your request.

Individual rights

Access You can ask for a copy of the personal information held about you.
Rectification You can ask for inaccurate or incomplete information to be corrected.
Erasure You can ask for deletion where there is no continuing reason to keep the information.
Restriction or objection You can ask for certain processing to be limited or object to it in some circumstances.
Complaint You can contact the business first, then the ICO if needed.

Response timing

Requests relating to personal information are normally acknowledged promptly and handled within one month unless the request is unusually complex.