Official Technology Partner of

Privacy Policy – CMC IT Limited

CMC ITPrivacy Policy – CMC IT Limited


This privacy policy is in relation to the EU General Data Protection Regulation (GDPR) that comes into effect on 25th May 2018 that impacts how all organisations collect, hold and process people’s personal data. GDPR is a significant piece of European legislation. It builds on existing data protection laws, strengthening the rights that EU individuals have over their personal data, and creating a single data protection approach across Europe.

CMC IT Limited is focused on its GDPR compliance responsibilities.  During our implementation period, we have implemented new requirements and restrictions imposed by GDPR and have taken the necessary action to ensure that we handle all data in compliance with the applicable law.

CMC IT Limited is committed to meeting any contractual obligations for procedures, products and services and is approaching GDPR compliance on three main fronts:

  1. To ensure our own compliance as a company that holds and processes people’s personal data.
  2. To ensure our partners and suppliers adhere to the highest standards of compliance and GDPR regulation.
  3. To ensure that our service solutions all support our customers’ GDPR compliance efforts.


GDPR Compliance

CMC IT Limited has implemented and have appropriate security controls in place, to protect personal data under information security management, certified to ISO 27001 standards and cyber essentials guidelines to ensure that all personal data within, or passing through the company, will be handled in accordance with GDPR regulations.

We have implemented the relevant data encryption tools, perform constant reviews and practises to ensure the safeguarding of any data handled by CMC IT Limited and all of its employees.

 All employees will be provided with the relevant training so they are aware of all GDPR procedures and restrictions.