Natures Menu’s Approach to GDPR

 

At Natures Menu, we are committed to having the highest quality processes and procedures in place in order to be fully compliant with all current legislation.

We are in the process of reviewing our existing policies and procedures in relation to the GDPR legislation which will come into force on 25 May 2018. We are reviewing the customer journey and assessing how we process personal data to ensure it is fully compliant with the recent legislation.

We have a GDPR project team in place lead by a project manager who is reviewing all of our data processes and reviewing our data security procedures. We will have an agreed and compliant process in place regarding the notification of a data breach, information for our customers about how data will be used and the right to erasure.

What we are working on

We are completing a full data audit to review where our data is held, stored and processed. Our servers are within the European Economic Area (EEA) and we will have obtained proof from any suppliers that the relevant safeguards are in place to protect the personal data where we transfer or share data outside of the EEA.

All possible precautions have been implemented to mitigate the risk of a data breach and protect personal data.

Any amendments will be communicated to all necessary parties prior to May 2018.

If you have any other questions relating to how your data is processed please contact privacy@naturesmenu.co.uk