HENTON'S COMPUTER SERVICES
Keeping you connected, protected, and productive.

Mobile: 07775 900 684
or via Email

Sleaford and the surrounding area

GDPR Compliance Statement

Henton’s Computer Services is committed to protecting the privacy and security of all personal data we handle. We comply fully with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This statement outlines how we ensure that personal data is collected, processed, stored and disposed of responsibly and lawfully.

1. Lawful Basis for Processing

We only collect and process personal data when we have a lawful basis to do so, including:

  • Contractual necessity – to provide IT services, repairs, support or quotations
  • Legitimate interests – to maintain records, improve services or communicate with clients
  • Legal obligations – for accounting, invoicing and regulatory requirements
  • Consent – where required, and always freely given and withdrawable

2. Personal Data We Handle

Depending on the service provided, we may process:

  • Contact details (name, address, phone number, email)
  • Business information (for commercial clients)
  • Technical data required for diagnostics or repairs
  • Payment information (not stored by us; handled securely by payment providers)

We only access the data necessary to complete the work requested.

3. Data Security

We take appropriate technical and organisational measures to protect personal data, including:

  • Secure storage of customer information
  • Restricted access to data
  • Safe handling of devices during repairs
  • Secure data erasure when requested or required

We never store unnecessary data or keep it longer than needed.

4. Data Retention

Personal data is retained only for as long as necessary to:

  • Provide services
  • Maintain accurate financial and service records
  • Meet legal and regulatory obligations

Technical data accessed during support work is not stored unless required for ongoing service.

5. Data Sharing

We do not sell or share personal data with third parties for marketing.
Data may be shared only when:

  • Required by law
  • Necessary to complete a service (e.g., payment processors)
  • You have given explicit consent

Any third parties we use operate under their own GDPR‑compliant policies.

6. Your Rights Under GDPR

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate information
  • Request deletion of your data (where legally permitted)
  • Restrict or object to certain processing
  • Request a copy of your data in a portable format
  • Withdraw consent at any time (where consent is the basis for processing)

To exercise any of these rights, please contact us directly.

7. Data Breach Procedures

In the unlikely event of a data breach, we will:

  • Take immediate steps to minimise harm
  • Notify affected individuals where required
  • Report the breach to the ICO (Information Commissioner's Office) when legally necessary

8. Contact Information

If you have any questions about this GDPR Compliance Statement or how your data is handled, please contact us.