The General Data Protection Regulation (GDPR), which came into effect in May 2018, represents one of the most significant changes in data privacy regulation in recent years. It has transformed how organisations manage personal data and clarified responsibilities across businesses, from senior leadership to operational teams.
Under GDPR, organisations must implement robust processes to manage consent and ensure that personal data is handled responsibly. This includes maintaining effective systems to manage data rights and protect what is often a company’s most valuable asset—its data.
At 0asistax, we are fully committed to complying with GDPR and supporting our customers in meeting their own data protection obligations.
We adhere to the following principles when handling personal data:
We use secure data centres located only in the UK on servers that are owned and managed by us. Where we need to transmit data between data centres (e.g. to maintain backups and high availability), we always use encrypted connections. We store all sensitive data in encrypted form, passwords are only stored as forward only hash, which is 'salted' for uniqueness. This means that there is no way to find out any passwords from looking at the data.
We provide you with screens and utilities to review and update your data and where applicable your client’s data. If you decide to delete any data, then once it is marked for deletion, we will at the next deletion cycle, remove the record(s) from our system.
If you wish to stop using our service, then you may request to either have all data deleted or retained for future use, if you select the latter then you will still have access to review and delete.
If you have any further questions about GDPR and 0asistax, please contact us at support@0asistax.com.