QuMind Limited takes the handling of personal data very seriously. The General Data Protection Regulations (“GDPR”) set out in this document demonstrates our obligations and our approach to the handling of personal data under GDPR.

1. Ensuring we comply with General Data Protection Requirements

To adhere to GDPR, we perform the following:

Awareness - We ensure that all decision makers and key people in our organisation are aware of GDPR implications.

Information we hold - we constantly review and document the personal data we hold, where it came from and who we share it with. This is set out in our revised Privacy Policy here. From time to time we shall review this to ensure that it is up to date.

Communicating privacy information - we review our privacy notices to ensure GDPR compliance.

Individuals rights - we frequently check our procedures to ensure they cover all rights of individuals, including how we would delete personal data or provide data electronically and in a commonly used format.

Subject access requests - we continuosly review our procedures and have a plan in place for how we will handle requests within the required timescales and provide any additional information.

Lawful basis for processing personal data - we have clarified the lawful basis for our processing activity in the GDPR. It is detailed in our privacy policy and primarily relates to the obtaining of appropriate consent.

Consent - we write our consent clauses in a way that ensures GDPR compliance and that those interacting with our platform are explicitly consenting to the use of their personal data in a particular way.

Children - Our services only apply to individuals who are 16 years of age or older.

Data Breaches – if there is a data breach we have a process for dealing with this not only to ensure compliance with GDPR but also to ensure that any breach is contained promptly to minimize the risk.

Data Protection by Design and Data Protection Impact Assessments – as we embrace the requirements of GDPR we ensure that all our policies and procedures are designed in a way to ensure the protection of a person’s personal data.

2. GDPR Assessment

In assessing our approach with respect to complying with GDPR we have considered the main tenets of data protection and privacy that are contained within GDPR:

Table 1 - GDPR Table 2 - GDPR

QuMind Limited, September 2021

Let us help you get closer to your customers.


The Art of