GDPR Statement

Commitment Statement

ABa welcomes the introduction of the EU General Data Protection Regulation (GDPR), which comes into force 25 May 2018. This the most significant piece of European privacy legislation in the last twenty years. It replaces the 1995 EU Data Protection Directive (European Directive 95/46/EC), strengthening the rights that EU individuals have over their data, and creating a uniform data protection law across Europe.

How will ABa comply with the GDPR?

ABa has always maintained compliance to all Data Protection legislation and our GDPR preparation started in 2017 - reviewing (and updating where necessary) all our internal processes, procedures and documentation to ensure that we are ready when GDPR comes into force.

Our GDPR Principles are:

  • Data is processed fairly and lawfully
  • Data is processed only for specified and lawful purposes
  • Processed data is adequate, relevant and not excessive
  • Processed data is accurate and, where necessary, kept up to date
  • Data is not kept longer than necessary
  • Data is processed in accordance with an individual’s consent and rights
  • Data is kept secure
  • Data is not transferred to countries outside of the European Economic Area (‘EEA’) without adequate protection

ABa Quality Monitoring Limited is certified to ISO 27001, ISO 9001, ISO 22301 and ISO 14001, which are externally audited annually. ABa also undergoes annual Cybersecurity testing of our company’s virtual and physical security measures. This ensures we adhere to stringent processes for keeping our data and our customers’ data secure.