The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a privacy and data protection regulation in the European Union (EU) and will be enforceable from 25TH May 2018 and requires no enabling legislation so automatically becomes binding and applicable on that date.

The GDPR imposes new obligations on organisations that control or process relevant personal data and introduces new rights and protections for EU data subjects.

The GDPR applies to data processing carried out by organisations operating within the EU. It also applies to organisations outside the EU that offer goods or services to individuals in the EU.

Information Security

Keel Over Marketing places a high importance on information security and is committed to good practice, professionalism and integrity in our marketing process. We protect your privacy and treat all dealings with you in the strictest confidence, whether through our website, electronic communication, on the telephone, or face to face. You are assured that we only gather information necessary to aid our management and marketing processes and to understand the profile of our customers and website users to monitor and improve our service.

We consider that by providing us with their details with us they have given their permission to us collecting and holding personal information on them. All personal data such as name, address, email address, and phone numbers are gathered purely for this purpose and held on secure servers located within the UK or the EU.
We will hold relevant data for a period of one year after its creation, or one year after the date on which we last contacted you. We interpret the legal basis for this processing as our legitimate interest in the following:
• provide marketing and advertising services
• maintain our accounts and records
• promote our services
• undertake research

How long will you keep my data?

Unless we have a contract to provide services with you, the most we will retain your data for will be 6 months. After 6 months or before, we will contact you again and ask if you are happy for us to keep your details on our database for a further of 6 months.
We will not disclose personal data for any reason than that directly relevant to our management or marketing processes or as required by law.

Who the information may be shared with.

We sometimes need to share the personal information we process with the individuals themselves and also with other organisations. Where this is necessary we are required to comply with all aspects of the Data Protection Act (DPA). What follows is a description of the types of organisations we may need to share some of the personal information we process with for one or more reasons.
Where necessary or required we share information with:
• accountants
• central government
• enforcement agencies
• credit reference agencies
• debt collection agencies

Information Commissioner’s Office

We are registered with the ICO (Information Commissioner’s Office) and our registered number is Z4958018. You can visit their website at and where you can find out more about this legislation and your rights.