mail@storm-geomatics.com 01608 664910

Privacy Policy & GDPR

Scroll

Introduction

Storm Geomatics Ltd is committed to full compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We have implemented a formal programme of training, technical safeguards, and management oversight to ensure compliance and build trust with our clients, staff, and partners.

Our GDPR Compliance Programme.

To meet GDPR obligations, we operate a company-wide data protection programme that includes:

  • Regular reviews of data protection policies and procedures
  • Annual mandatory GDPR training for all staff
  • Documented data processing and retention practices
  • A designated Data Protection Lead to oversee compliance and manage data-related queries
  • A breach response protocol to ensure prompt action if an incident occurs

Data Handling Responsibilities.

Every employee of Storm Geomatics Ltd is responsible for protecting personal data. Key responsibilities include:

  • Ensuring data is collected and processed only for specified, lawful purposes
  • Storing personal data securely—whether in digital or physical formats
  • Not sharing data with unauthorised individuals, inside or outside the business
  • Reporting any suspected data breaches immediately to the Data Protection Lead

All staff receive training in recognising phishing attempts, secure document handling, and the legal principles of data minimisation and purpose limitation.

IT Data Security Measures

We apply the following IT controls to protect personal and sensitive data:

  • Company laptops and mobile devices are password protected and encrypted
  • Endpoint protection software is installed and regularly updated on all devices
  • Staff must use secure, password-protected cloud storage and systems
  • Access to internal data is role-based and logged
  • Firewalls and antivirus software are in place across the network
  • Email security includes spam filtering and phishing detection systems

We do not permit personal data to be stored on USB devices or unencrypted drives. Data is never stored in company vehicles.

What Personal Data Do We Collect?

Depending on your relationship with us, we may collect:

  • Name, address, email, phone number
  • Business details and job title
  • Any other personal information voluntarily provided

How We Use Your Data.

We use personal data to:

  • Manage client accounts
  • Deliver contracted services
  • Communicate updates and service information
  • Meet legal and contractual obligations

We process data lawfully based on contract, consent, legal obligation, or legitimate interests.

Data Retention.

Data is stored only for as long as necessary. Personal data is generally retained for no more than six years unless legal obligations require otherwise. Secure shredding and deletion procedures are followed.

Third-Party Sharing

We do not share data with third parties except where required by law or to support regulatory processes.

Your Data Protection Rights

Under UK GDPR, individuals have rights including access, correction, erasure, restriction, and data portability. You can withdraw consent at any time.

Contact us at:

Storm Geomatics Ltd
Unit 11, Shipston Business Village
Tilemans Lane, Shipston on Stour, CV36 4FF mail@storm-geomatics.com |  01608 664910

Approved by: Mike Hopkins Date: 01.05.2026
Managing Director Storm Geomatics

VersionDateDocument OwnerDescription Of Changes
1.02019Storm Geomatics LtdFirst issue
1.12023Storm Geomatics LtdReview and updates
2.019.01.2025Storm Geomatics Ltdchange policy number (CP24), reformat presentation.
2.123.06.2025Storm Geomatics LtdAdding more operational detail
2.101.05.2026Storm Geomatics LtdDocument reviewed, no changes required