info@prodigitalmarketing.co.uk

01928 246 555

pro digital logo

Email Us

01928 246 555

Security Policy

1. Introduction

Pro Digital Marketing is committed to ensuring the security and integrity of the data we collect, process, and store. This Security Policy outlines our approach to safeguarding personal data and maintaining compliance with data protection laws.

2. Scope

This policy applies to all data processed by Pro Digital Marketing, including personal data collected via our website, analytics tools, contact forms, and any third-party platforms we use to deliver services.

3. Data Protection & GDPR

We adhere to the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Key principles include:

  • Lawfulness, fairness, and transparency: We process data lawfully and ensure individuals understand how their data is used.

  • Purpose limitation: We only use data for the purposes it was collected.

  • Data minimisation: We collect only the data necessary for service delivery and communication.

  • Accuracy: We keep data accurate and up to date.

  • Storage limitation: We retain personal data only as long as necessary.

  • Integrity and confidentiality: We implement appropriate technical and organisational measures to secure data.

4. Information Security Measures

To protect personal data, we apply the following security practices:

  • Secure servers and cloud-based storage with encryption (in transit and at rest).

  • SSL/TLS encryption on all website pages.

  • Restricted access to data on a need-to-know basis.

  • Strong password policies and regular password updates.

  • Regular software updates and security patching.

  • Staff training on data protection and privacy.

  • Routine data backups and disaster recovery plans.

5. Incident Response

In the event of a data breach, we will:

  • Investigate and contain the breach immediately.

  • Notify the Information Commissioner’s Office (ICO) within 72 hours where required.

  • Inform affected individuals where there is a high risk to their rights and freedoms.

  • Document the incident and response actions taken.

6. Third-Party Services

We carefully vet third-party vendors and platforms that process data on our behalf. These partners are required to comply with GDPR standards and maintain strong data security practices.

7. International Data Transfers

Where data is transferred outside the UK or European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions.

8. Data Processing & GDPR Commitments

If Pro Digital Marketing processes personal data on behalf of a client, we act as a Data Processor under Article 28 of the UK and EU GDPR. In such cases, we commit to:

  • Processing data solely on documented instructions from the client.

  • Ensuring confidentiality, integrity, availability, and resilience of processing systems.

  • Assisting the client in fulfilling data subjects’ rights (access, erasure, objection, etc.).

  • Making reasonable efforts to support the client with data protection impact assessments (DPIAs).

  • Not engaging sub-processors without prior notification and appropriate safeguards.

  • Not transferring data outside the UK/EEA without lawful mechanisms (e.g., SCCs).

If a standalone Data Processing Agreement (DPA) is required, Pro Digital Marketing will provide or sign one upon request.

9. Contact

If you have any questions or concerns regarding this Security Policy or our data protection practices, please contact:

Pro Digital Marketing
Holly House, Village Road, Chester, CH3 7AS
Email: info@prodigitalmarketing.co.uk
Phone: 01928 246555

This policy was last updated on 3 September 2025. We may update this policy periodically to reflect changes in legislation or our operations.

https: