Data protection means the fair and proper use of information about people. It’s part of the fundamental right to privacy. It’s also about building trust between people and organisations. This means treating people fairly and openly, recognising their right to have control over their own identity and their interactions with others, and striking a balance with the wider interests of society.
The UK data protection regime is set out in the Data Protection Act 2018 and the General Data Protection Regulation, GDPR (which also forms part of UK law).
Data is regulated in the UK by the ICO
Globocol has assessed the GDPR to ensure that all of its own activities, products and services are compliant. Globocol Ltd is registered with the ICO under registration reference: ZA248775
GDPR makes a distinction between the Data Controller and the Data Processor. The Controller is the person or body which determines the purposes and means of the processing of personal data. The Processor is the person or body which processes personal data on behalf of the Controller.
Globocol is a business that designs and develops software solutions. From a GDPR perspective:
Globocol is a Data Controller of its own data, relating to its own employees or its own marketing and administrative activity.
In the provision of its services, Globocol is a Data Processor and Globocol’s customers are the Data Controllers.
Globocol has ensured that its policies and procedures fully comply with GDPR.
Globocol has data processing agreements in place with customers and suppliers to ensure that GDPR is an integral part of the provision of all its services.
Globocol can offer additional cyber security options for customers who feel they would like to increase their monitoring of activity in relation to their own systems and processes.
ISO 27001:2022 Certification
Globocol is ISO 27001:2022 certified. This is the world's best-known standard for information security management systems (ISMS). Security specialists CRK Consulting Limited act as independent advisors on best practice to ensure our ongoing compliance with data protection legislation and to keep us alert about possible information security threats.