The Data Protection Policy and Privacy Notice is essential for any organization processing personal data in the UK. It fulfills the legal requirement under UK GDPR and DPA 2018 to provide transparent information about data processing activities and demonstrate compliance with data protection principles. This document serves dual purposes: internally as a policy guide for staff handling personal data, and externally as a privacy notice for data subjects. It should be regularly reviewed and updated to reflect changes in processing activities or regulatory requirements.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Introduction: Purpose and scope of the policy
2. Definitions: Key terms used throughout the document including data protection terminology
3. Data Protection Principles: The seven key principles of GDPR/UK GDPR and how they are implemented
4. Legal Basis for Processing: Explanation of lawful bases used for processing personal data
5. Individual Rights: Description of data subject rights and how to exercise them
6. Security Measures: Technical and organizational measures for data protection
7. Data Breach Procedures: Response procedures for data security incidents
1. International Transfers: Provisions for transferring data outside the UK, including safeguards and mechanisms
2. Children's Data: Special provisions and safeguards for processing children's personal data
3. Marketing Provisions: Specific rules and consent requirements for direct marketing activities
4. Special Category Data: Additional safeguards and procedures for processing sensitive personal data
1. Data Processing Register: Detailed record of processing activities including purposes, categories, and retention periods
2. Security Procedures: Detailed security protocols and measures for protecting personal data
3. Data Retention Schedule: Specific timeframes for retaining different categories of personal data
4. Breach Response Plan: Step-by-step procedures for handling and reporting data breaches
5. Data Subject Rights Procedure: Detailed procedures for handling data subject rights requests
Find the exact document you need
Just In Time Privacy Notice
An England & Wales notice detailing specific data collection and usage at the moment of user interaction.
Download
Cookie Notice
An England & Wales legal agreement allowing collateral substitution while ensuring secured obligations are adequately covered.
Download
Privacy Notification
A legally required document under English and Welsh law that informs individuals how their personal data is collected and used, in compliance with UK GDPR.
Download
Privacy Disclosure Notice
A legally required document under UK law that explains how an organization handles personal data in England and Wales.
Download
Client Privacy Notice
A legally required document under English and Welsh law that informs clients how their personal data is processed, as mandated by UK GDPR.
Download
General Privacy Notice
A legally required privacy document under UK law that explains how personal data is handled and protected.
Download
Data Protection Policy And Privacy Notice
A document detailing data protection practices and privacy information under English and Welsh law, ensuring compliance with UK GDPR and DPA 2018.
Download
Personal Data Notice
A legally required document under UK law that informs individuals how their personal data is processed and protected.
Download
Online Privacy Notice
A legally required document under UK law that explains how an organization handles personal data collected online.
Download
External Privacy Notice
A legally required document under UK law that explains how an organization handles personal data of individuals.
Download
Data Collection Notice
A legally required notice under UK law that informs individuals how their personal data will be collected and processed.
Download
Cookie Consent Notice
A legally required notice under UK law that informs website users about cookie usage and obtains their consent.
Download
Applicant Privacy Notice
A legally required privacy notice under English and Welsh law that informs job applicants how their personal data will be handled during recruitment.
Download
Company Privacy Notice
A legally mandated document under UK data protection law that explains how an organization handles personal data in England and Wales.
Download
Data Processing Notice
A mandatory document under UK law that informs individuals how their personal data is processed in England and Wales.
Download
Privacy Policy Notice
A legally required document under English and Welsh law that explains how an organization handles personal data in compliance with UK GDPR.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)