Effective Date: 12 July 2025
Company Name: Skydatasol Security (a subsidiary of Skydatasol)
Company Website: www.security.skydatasol.com
Contact Email: security@skydatasol.com
Data Controller: Francesco Dergano
At Skydatasol Security, we take your privacy seriously. This Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and all applicable privacy laws in the United Kingdom. This policy applies to all clients, staff, job applicants, learners, and individuals who engage with our services, either online or in person.
We collect and process a range of personal information to provide our services and comply with legal obligations. This includes personal identification details such as your full name, date of birth, contact information, and photographic ID including passports or driving licences. We may also collect professional and regulatory information such as your SIA licence number, training records, employment history, National Insurance number, DBS or CRB checks, and documentation confirming your right to work in the UK.
Technical data such as your IP address, device identifiers, and browsing behaviour may be collected through the use of cookies and tracking technologies on our website. For specific regulated roles, such as Close Protection or event security services that require enhanced vetting, we may also process special category data such as medical fitness, ethnicity (for monitoring purposes only), and biometric data, strictly where required and with appropriate safeguards.
We process your personal data for several lawful and essential purposes. These include the delivery of contracted security services, management of employment relationships, and facilitation of SIA-compliant training and certifications. Your data enables us to comply with legal requirements, verify identity, ensure public safety, and operate internal systems such as scheduling, payroll, and staff development. Where necessary, data is used to handle incidents, investigations, complaints, or insurance claims. Marketing communications are only sent where you have provided explicit consent.
We rely on one or more legal grounds to process your personal data. Where you enter into a contract with us as a client, employee, or trainee, we process your data on the basis of contractual necessity. We may also process data to meet legal obligations such as those imposed by the SIA, HMRC, or safeguarding regulations. In cases where we have a legitimate business interest—such as improving our services or ensuring safety—we balance this interest with your privacy rights. Where none of the above apply, we will ask for your clear and informed consent.
We may share your data with government bodies and regulatory organisations where required by law. This includes the Security Industry Authority, Disclosure and Barring Service, accredited awarding bodies such as Highfield, NCFE, and SFJ Awards, HM Revenue & Customs, and Companies House. Where security operations intersect with law enforcement needs or public safety concerns, your data may be shared with police or emergency services. We may also disclose data to legal representatives, insurance providers, and our parent company, Skydatasol, for internal governance. Your data is never sold to third parties.
We maintain strict security measures to ensure that your personal data is stored securely and accessed only by authorised personnel. Data is stored on secure servers located in the United Kingdom or in jurisdictions with adequate data protection laws. We use encrypted communication channels, access controls, and audit trails to protect all data. Staff are regularly trained on confidentiality and data protection practices.
We retain personal data only as long as necessary for the purpose it was collected. Employment records are typically retained for six years after the end of employment. CCTV footage is stored for no longer than 30 days unless required as evidence in an investigation. Training records may be held for a period of three to five years, depending on the nature of the certification and the awarding body. Once data is no longer needed, it is securely deleted or anonymised.
Under the UK GDPR, you have several rights regarding your personal data. You have the right to access the data we hold about you and to request that we correct any inaccuracies. You can request the erasure of your data where there is no lawful basis for us to retain it. You also have the right to restrict processing, object to certain forms of processing, and to request that your data be provided to you in a structured, machine-readable format. If we are processing your data based on your consent, you may withdraw that consent at any time.
Our website uses cookies to improve your browsing experience, remember your preferences, and collect anonymised analytics data. You can control your cookie settings through your browser at any time. We do not use cookies to collect personally identifiable information unless you actively provide it through forms or login features.
Our website may contain links to external websites and services that are not operated by Skydatasol Security. We are not responsible for the privacy practices or content of these third-party websites. We recommend that you read their respective privacy policies before submitting personal data to them.
We reserve the right to update this Privacy Policy at any time to reflect changes in our operations or legal obligations. The most current version will always be available at www.kamiwebproject.com/privacy-policy. If material changes are made, we may notify you via email or prominent notices on our website.
If you have any questions, concerns, or requests related to your personal data or this policy, you may contact us by email at security@skydatasol.com or by post to the attention of Dr Francesco Dergano, Data Controller. Our offices are based in the United Kingdom. If you are dissatisfied with our handling of your data or response to a complaint, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) via their official website at www.ico.org.uk.