BCR Comply GDPR Policy

1. Introduction

BCR Comply is committed to protecting the privacy and security of personal data collected and processed in the course of providing our SAAS-based project management solutions to the construction industry. This GDPR policy outlines our approach to compliance with the General Data Protection Regulation (GDPR) in relation to the personal data we handle.

2. Scope

This policy applies to all personal data collected, processed, and stored by BCR Comply through our web-based administration system and mobile Apps.

3. Data Collection and Processing

We collect and store personal data on behalf of our clients, which may include names, addresses, contact details, and photographs of works carried out on buildings undergoing construction work. This data is collected through our mobile APPs and web-based admin dashboard.

The purpose of collecting this data is to facilitate the completion of these construction projects in a timely manner, while also documenting evidence of the work performed to standard via surveys and photographs.

4. Data Storage and Security

Personal data collected by BCR Comply is stored on our AWS server located in Ireland. The data is stored in a SQL database, while photographs are stored in designated folders. We implement appropriate technical and organizational measures to ensure the security and integrity of the data, including encryption and access controls.

5. Data Sharing

BCR Comply does not share personal data collected from our clients with any third parties. The data belongs to our clients, who have full access to it through our systems.

6. Data Retention

We retain personal data for a minimum period of 10 years, in compliance with legal and regulatory requirements. We do not delete data unless requested by the client.

7. Individual Rights

Under GDPR, individuals have certain rights regarding their personal data, including the right to access, rectify, erase, restrict processing, and data portability. BCR Comply ensures that these rights are respected and provides mechanisms for individuals to exercise them.

8. Compliance

BCR Comply is committed to ongoing compliance with GDPR and other relevant data protection laws and regulations. We regularly review and update our policies and procedures to ensure continued adherence to data protection principles.

9. Contact Information

For inquiries or concerns regarding our GDPR compliance or personal data handling practices, individuals can contact us by emailing jon@format.ie or calling 086 325 5875.

10. Updates to the Policy

This GDPR policy may be updated from time to time to reflect changes in our data processing activities or legal requirements. Any updates will be communicated to our clients and made available on our website.