ATTFT's commitment to responsible, lawful, and transparent data handling under UK GDPR and the Data Protection Act 2018.
Trading name notice: ATTFT Finding Technology is the trading name used in our products and services. The registered legal entity is ATTFT Limited (Company No. 15102834), incorporated in England and Wales.
ATTFT Limited is committed to protecting the personal data of our website visitors, clients, and the end users of systems we build. As a company registered in England and Wales and operating under SIC 63110 (Data Processing, Hosting, and Related Activities), data protection is not an afterthought it is central to how we operate.
We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Our Privacy Policy provides full details of how we handle personal data.
We adhere to the six data protection principles under UK GDPR, processing personal data:
As a data controller, ATTFT is also responsible for and can demonstrate compliance with these principles (accountability).
We rely on the following lawful bases depending on the context:
We maintain a Record of Processing Activities (RoPA) documenting all processing activities, lawful bases, data categories, and retention periods.
We respect and facilitate all rights under UK GDPR. Individuals have the right to:
To exercise any right, contact us at [email protected]. We will acknowledge your request within 72 hours and respond within 30 days.
You have the right to lodge a complaint with the Information Commissioner's Office (ICO): ico.org.uk | 0303 123 1113.
Where we transfer personal data outside the UK, we ensure appropriate safeguards are in place, including:
We document all international transfers and conduct transfer impact assessments where required.
We have a documented data breach response procedure. In the event of a personal data breach:
Where ATTFT processes personal data on behalf of clients (acting as a data processor), we enter into a written Data Processing Agreement (DPA) that meets the requirements of Article 28 UK GDPR, covering:
Contact us to request a DPA for your engagement: [email protected].
ATTFT Limited is registered with the Information Commissioner's Office (ICO) as required for organisations that process personal data. Our registration details are available on the ICO's public register.
For any data protection matters, contact us at [email protected].