How we manage your data

This Data Policy outlines the principles and guidelines governing the collection, use, processing, storage, and sharing of data by Flowbird Ltd ("the Company"). It is designed to ensure compliance with applicable data protection laws and regulations and to protect individuals' privacy and rights.

**2. Scope:**  

This policy applies to all data, including personal and sensitive information, collected and processed by the Company across all platforms, media, and activities.

**3. Data Collection:**  

The Company collects data lawfully and transparently. The data collected will be relevant, limited to what is necessary for the purposes for which it is processed, and obtained only with informed consent or under another lawful basis for processing.

**4. Data Use:**  

Data is used strictly for the purposes specified at the time of collection or for purposes directly related to those purposes. The Company ensures that data is handled in a manner that respects individual privacy and is protected against misuse.

**5. Data Sharing and Disclosure:**  

Data will not be shared with or disclosed to third parties except as required by law, with the individual's explicit consent, or under securely controlled conditions with trusted partners who adhere to equivalent privacy and data protection standards.

**6. Data Storage and Retention:**  

Data is stored securely and protected against unauthorised access, disclosure, alteration, and destruction. Data retention periods are based on legal requirements and the purpose for which the data was collected. Data no longer required is securely disposed of, or anonymised.

**7. Data Security:**  

The Company implements appropriate technical and Company measures to ensure security appropriate to the risk, including protection against unauthorised or unlawful processing and accidental loss, destruction, or damage.

**8. Rights of Individuals:**  

Individuals have rights regarding their data, including the right to access, correct, delete, and restrict data processing. The Company provides mechanisms for individuals to exercise these rights.

**9. Data Transfers:**  

Any data transfer outside the jurisdiction will be conducted in compliance with applicable laws and regulations, ensuring adequate protection for the data transferred.

**10. Accountability and Governance:**  

The Company is committed to maintaining a culture of accountability and transparency in data processing. It appoints a Data Protection Officer (DPO) where required, conducts regular audits, and trains staff on data protection obligations.

**11. Updates to the Data Policy:**  

This policy may be updated periodically to reflect changes in legal requirements, technological advancements, or Company practices. Stakeholders will be notified of significant changes.

**12. Contact Information:**  

If you have any inquiries or complaints regarding data privacy and protection, please contact Jason Rainbird for Information about the Company or DPO.