Data Protection Policy
NexGen eHub Limited
Version: 1.0
Effective Date: 15 July 2026
Last Updated: 15 July 2026
Data Protection Policy
1. Policy Statement
NexGen eHub Limited (”NexGen eHub”, “we”, “our”, or “us”) is committed to protecting personal information and maintaining high standards of privacy, confidentiality, and information security.
We recognise the importance of handling personal data responsibly and are committed to processing information fairly, lawfully, transparently, and securely in accordance with applicable UK data protection legislation, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
This policy outlines our approach to protecting personal information collected, processed, and stored during the course of our business activities.
2. Purpose
The purpose of this policy is to:
- Protect personal information entrusted to us.
- Promote responsible data handling practices.
- Support compliance with applicable data protection legislation.
- Maintain client confidence and trust.
- Reduce the risk of unauthorised access, disclosure, or misuse of information.
3. Scope
This policy applies to:
- Visitors to our website.
- Clients and prospective clients.
- Business partners.
- Suppliers and contractors.
- Service providers.
- Any personal information processed by NexGen eHub Limited in connection with its business operations.
4. Data Protection Principles
Where applicable, we aim to process personal information in accordance with the following principles:
- Process data lawfully, fairly, and transparently.
- Collect information only for specified and legitimate purposes.
- Limit collection to information that is relevant and necessary.
- Keep personal information accurate and up to date where reasonably practicable.
- Retain information only for as long as necessary.
- Protect information through appropriate technical and organisational measures.
- Demonstrate accountability for our data protection practices.
5. Information We May Process
Depending on the services provided, we may process information including:
- Names
- Business details
- Contact information
- Email addresses
- Project information
- Business correspondence
- Customer support enquiries
- Operational documentation
- Website enquiry information
We do not intentionally collect excessive personal information.
6. Lawful Processing
We process personal information only where there is an appropriate lawful basis, including:
- Consent
- Contractual necessity
- Legitimate business interests
- Compliance with legal obligations
The lawful basis will depend on the nature of the information and the services being provided.
7. Data Accuracy
We aim to ensure that personal information remains accurate and up to date.
Where appropriate, individuals may request correction of inaccurate or incomplete information.
8. Confidentiality
Confidentiality forms an important part of our business operations.
Information provided by clients is handled responsibly and shared only where reasonably necessary for:
- delivering agreed services;
- complying with legal obligations; or
- protecting legitimate business interests.
Where third-party service providers are engaged, appropriate confidentiality expectations are applied.
9. Information Security
We take reasonable technical and organisational measures to protect information against:
- unauthorised access;
- accidental disclosure;
- loss or theft;
- alteration;
- misuse; and
- destruction.
Security measures may include:
- restricted access to business information;
- password-protected systems;
- secure cloud storage where appropriate;
- regular software updates;
- malware protection; and
- confidentiality-focused working practices.
Although we take reasonable precautions, no electronic system can be guaranteed to be completely secure.
10. International Processing
NexGen eHub Limited is managed from the United Kingdom.
Where operational support is provided through trusted service providers located outside the UK, personal information will only be processed where reasonably necessary to deliver the agreed services and subject to appropriate contractual and organisational safeguards.
We aim to minimise the sharing of personal information wherever possible.
11. Data Retention
We retain personal information only for as long as reasonably necessary to:
- provide our services;
- manage enquiries;
- maintain business records;
- comply with legal obligations; or
- resolve disputes.
Information that is no longer required will be securely deleted, destroyed, or anonymised where appropriate.
12. Individual Rights
Subject to applicable law, individuals may have rights including:
- the right to access their personal information;
- the right to request correction;
- the right to request deletion in certain circumstances;
- the right to restrict processing;
- the right to object to certain processing activities;
- the right to withdraw consent where applicable; and
- the right to request data portability where legally applicable.
Requests will be considered in accordance with applicable legislation.
13. Data Breaches
If we become aware of a personal data breach, we will take reasonable steps to:
- investigate the incident;
- contain the breach where possible;
- assess potential risks;
- take corrective action; and
- comply with any applicable legal notification requirements.
14. Third-Party Service Providers
We may use trusted third-party providers to assist with services such as:
- website hosting;
- email services;
- analytics;
- payment processing;
- cloud storage; and
- operational support.
Where third parties process personal information on our behalf, we expect them to maintain appropriate standards of confidentiality and security.
15. Staff and Contractor Responsibilities
Employees, contractors, and service providers working with NexGen eHub Limited are expected to:
- respect client confidentiality;
- access information only where authorised;
- use information solely for legitimate business purposes;
- report suspected security incidents promptly; and
- follow applicable information security procedures.
16. Training and Awareness
As our business grows, we aim to promote awareness of data protection responsibilities among personnel involved in delivering our services.
Policies and procedures may be reviewed periodically to support continuous improvement.
17. Policy Review
This policy will be reviewed periodically to ensure it remains appropriate for:
- our business activities;
- technological developments;
- legal requirements; and
- operational changes.
Updates will be published on our website where appropriate.
18. Contact Us
If you have any questions regarding this Data Protection Policy or our data handling practices, please contact:
NexGen eHub Limited
📍 Liverpool, United Kingdom
✉ enquiry@nexgenehub.co.uk
Related Policies
For additional information, please refer to our:
Website Disclaimer
Privacy Policy
Cookie Policy
Terms & Conditions