Host Lincoln Ltd offers a range of web hosting services under the Jolt.co.uk brand. The EU General Data Protection Regulation (GDPR) comes into force on 25th May 2018. This new regulation builds on existing data protection laws and strengthens the rights that you as individuals have over your personal data which has been shared with organisations. The key principles of the GDPR are that personal data is:
- processed lawfully, fairly and in a transparent manner in relation to individuals;
- collected and processed only for specific lawful purposes;
- adequate, relevant and limited to what is necessary;
- accurate and kept up to date;
- kept for no longer than necessary; and
- kept secure.
We respect your privacy and are committed to protecting your personal data and have made updates to our policies and procedures in order to be compliant with our obligations under the GDPR. We will still continue to provide the services the same services to you. Further information can be found in our privacy policy.
GDPR Readiness
Jolt.co.uk has undergone a thorough GDPR audit performed by a professional services firm to ensure readiness and compliance. Further, all team members have been fully trained with a specific focus around our data handling staff. As a member of GDPR’s predecessor, the Data Protection Act, the vast majority of our systems and processes were GDPR ready but we have taken certain steps particularly around communication (e.g. opt-in instead of opt-out) to deliver compliance. We continue to monitor the legislation, the market and how other organisations in this sphere interpret and enact GDPR and are committed to best practice.
Data Processor
Jolt.co.uk acts as a Data Processor for any content, material or data that has been uploaded to, sent to, provided to or exchanged with our servers and infrastructure. Jolt.co.uk clients remain the Data Controller for any and all content, material and other data that has been transferred in this manner.
Data Controller
Jolt.co.uk acts as a Data Controller only for information provided to Jolt.co.uk at the time of service subscription and through general account management purposes. This includes only essential information for the services provided alongside any optional marketing data.
Location of Data
Jolt.co.uk operates two UK data centres. Both are used in the Data Processor and the Data Controller roles. The physical addresses of these two data centres are:
Brunel Drive Newark,
Notts NG24 2AG
Oxgate Centre
Oxgate Lane
London
NW2 7JA
Deletion of Data
You, as the Jolt.co.uk client, are responsible for the deletion of data as the Data Controller for any data hosted on our services. Any information you delete, modify or change is done so immediately on our servers and cloud. Whereby we provide additional backups, this data is held for a maximum of 30 days also within our two UK data centres. Whereby we provide offsite backup, this is where one data centre is backing up to the other data centre, keeping data inside the United Kingdom at all times. Where we act as the Data Controller, such as the information held to enable your subscription, we hold this data actively only during your subscription period. Upon cancellation of subscriptions, or services rendered by Jolt, we will hold your data for a maximum of a further 365 days. This data is limited to name, address, email address and phone number. Any technical information, that may contain personal data, such as access logs, is stored on our services for no longer than 30 days and deleted automatically. You may request we remove your data before the 365 day period by emailing a request to gdpr@jolt.co.uk. We will receive, process and respond to your request within 7 (seven) working days.
Notice of Breach
In the unlikely event of a data breach, we will notify you within 48 hours or 2 business days of us becoming aware to the event.
Request for Data Held
Should you wish to request a copy of the data we hold for you, please email gdpr@jolt.co.uk with full details of your request. We will receive, process and respond to your request with 7 (seven) working days.
Your Rights
The GDPR provides you with the following rights: right to be informed, right of access, rights to rectification, right to erasure, right to restrict processing, right to data portability, right to object, rights in relation to automated decision making and profiling. Further information about each of your rights can be found in our privacy policy.
Should you have any other queries or would like further information, you can contact us by emailing us gdpr@jolt.co.uk.