Data Privacy Policy

Data Privacy Policy

Website: impsuk.com
Organization: IMPS UK
Effective Date: 01 Jan 2026

1. Purpose

The purpose of this Data Security Policy is to establish standards and controls to protect the confidentiality, integrity, and availability of data collected, processed, stored, or transmitted by IMPS UK through the website impsuk.com and related systems. This policy aims to prevent unauthorized access, disclosure, alteration, loss, or misuse of data.

2. Scope

This policy applies to:

  • All data collected via impsuk.com (including personal and non-personal data)

  • All employees, contractors, partners, and third parties who access IMPS UK data

  • All systems, devices, applications, and infrastructure used to process or store IMPS UK data

3. Data Classification

IMPS UK classifies data into the following categories:

3.1 Personal Data

Information that identifies or can be used to identify an individual, including but not limited to:

  • Name, email address, phone number

  • IP address and online identifiers

  • Any information submitted through forms on impsuk.com

3.2 Confidential Data

Sensitive business or operational information, including:

  • Login credentials

  • Security configurations

  • Internal documentation

3.3 Public Data

Information approved for public release, such as published website content.

4. Data Collection and Minimization

  • IMPS UK collects only the minimum amount of data necessary to provide its services.

  • Data collection purposes are clearly defined and communicated through the Privacy Policy.

  • Personal data is not used for purposes beyond those stated without user consent.

5. Data Access Control

  • Access to data is granted on a least privilege basis.

  • User accounts are protected by strong passwords and, where applicable, multi-factor authentication (MFA).

  • Access rights are reviewed periodically and revoked when no longer required.

6. Data Storage and Encryption

  • Sensitive and personal data is stored securely using industry-standard security practices.

  • Encryption is applied where appropriate, including:

    • HTTPS/TLS encryption for data in transit

    • Encrypted storage for sensitive data at rest (where supported by hosting infrastructure)

7. Network and System Security

IMPS UK implements the following safeguards:

  • Secure hosting environment with firewall protection

  • Regular system and software updates

  • Malware and intrusion detection/prevention measures

  • Restricted administrative access to servers and databases

8. Third-Party Service Providers

  • Third-party services (e.g., hosting, analytics, email services) are selected based on their security and compliance standards.

  • Data shared with third parties is limited to what is necessary and governed by contractual or legal obligations.

9. Data Retention and Disposal

  • Data is retained only for as long as necessary to fulfill its purpose or comply with legal obligations.

  • When data is no longer required, it is securely deleted or anonymized using appropriate methods.

10. Incident Response and Data Breach Management

  • IMPS UK maintains procedures to detect, respond to, and mitigate data security incidents.

  • In the event of a data breach involving personal data:

    • The incident will be assessed promptly

    • Affected users and relevant authorities will be notified as required by applicable laws (including UK GDPR)

11. Compliance and Legal Obligations

IMPS UK is committed to complying with applicable data protection and security laws, including:

  • UK GDPR

  • Data Protection Act 2018

  • Other applicable UK and international regulations

12. User Responsibilities

Users of impsuk.com are encouraged to:

  • Keep their login credentials confidential

  • Notify IMPS UK of any suspected security issues

  • Use the website in a lawful and responsible manner

13. Policy Review and Updates

  • This Data Security Policy is reviewed periodically and updated as necessary to reflect changes in legal requirements, technology, or business practices.

  • The latest version will always be published on impsuk.com.

14. Contact Information

For questions or concerns regarding this Data Security Policy or data protection practices, please contact:

Email: info@impsuk.com
Website: https://impsuk.com

End of Policy