Data Protection & Privacy Statement
Approved by: Ian Chadwick — 20/01/2026
Commitment
Protecting personal data is a core component of responsible technology development and governance at WBP Equip. We take our obligations seriously and are committed to handling personal data lawfully, fairly, and transparently.
Regulatory Framework
We operate in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. These form the foundation of our approach to data protection.
Lawful and Proportionate Data Use
Personal data is collected and processed for specified purposes, limited to what is necessary, and used in a manner consistent with individuals' rights under applicable law.
Data Protection by Design
We embed data protection considerations into the design of our systems and processes. This includes data minimisation, appropriate retention, access controls, role-based permissions, and oversight of third-party involvement.
Use of Technology and AI
Where personal data is used within technology or AI-driven systems, we apply appropriate safeguards. No isolated, fully automated decisions with significant effects are made without human involvement. Privacy, fairness, and the potential for misuse are considered as part of our AI governance framework.
Third Parties and Data Sharing
Where personal data is shared with third parties — including technology partners, service providers, and professional advisers — appropriate contractual and governance measures are applied.
Data Security and Incident Management
We apply proportionate technical and organisational measures to protect personal data, aligned with our Information Security Overview. In the event of a data breach, we have procedures in place to respond promptly and, where required, to notify the appropriate authorities and individuals.
Individual Rights
Individuals have rights under UK data protection law, including the right to access, correct, and in certain circumstances, delete personal data, and to object to certain types of processing.
Transparency
This statement provides a high-level overview of our approach. Our Privacy Policy, available on our website, sets out in more detail how we collect, use, and manage personal data.