GDPR Compliance
Last updated: December 21, 2025
Rotacare is fully committed to compliance with the General Data Protection Regulation (GDPR). We ensure that all personal data is processed lawfully, fairly, and transparently.
1. Data Protection Principles
We adhere to the following principles when processing personal data:
- Lawfulness, fairness, and transparency
- Purpose limitation
- Data minimization
- Accuracy
- Storage limitation
- Integrity and confidentiality
2. Your Rights
Under the GDPR, you have the following rights:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
3. Data Isolation
We use strict multi-tenant isolation to ensure that data from one organisation is never accessible by another. Each organisation's data is logically separated at the database level.
4. Contact Us
If you have any questions about our GDPR compliance or wish to exercise your rights, please contact our Data Protection Officer at dpo@rotacare.uk.