Skip to content

Day Off

Data Processing Agreement

Effective Date: December 21st, 2022

Day Off LTD, located at 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, is committed to ensuring the security and protection of personal data under the General Data Protection Regulation (GDPR). This document explains how Day Off LTD processes personal data as part of its services.

1. Purpose of Processing

Day Off LTD processes personal data to provide its services, which include tracking employees’ time off and leave. The data is used to maintain accurate records of employees’ vacations, days off, and schedules.

2. Types of Data Collected

The following types of personal data may be collected and processed:

• Employee name
• Email address
• Phone number
• Employee photo
• Employment details

3. Categories of Data Subjects

Day Off LTD processes data belonging to the following categories of individuals:

• Employees
• HR managers
• Company owners

4. Data Retention

Day Off LTD retains personal data only for as long as necessary to fulfill the purposes outlined above. When the data is no longer required:

• It will be anonymized or deleted within 90 days.
• If deletion is not possible for technical reasons, the data will be blocked to prevent further processing.

5. Data Security

Day Off LTD implements appropriate technical and organizational measures to ensure that personal data is:

• Processed securely
• Protected against unauthorized access, alteration, or loss

6. Data Subject Rights

As per GDPR, individuals have the following rights regarding their personal data:

• The right to access their data
• The right to correct inaccurate information
• The right to request deletion or restriction of processing
• The right to data portability
• The right to object to certain types of data processing

For exercising these rights, please contact us at info@day-off.app.

7. Sub-Processors

Day Off LTD may engage third-party service providers to assist in delivering its services. These providers:

• Will process personal data only under Day Off LTD’s instructions
• Are required to comply with GDPR and maintain data security

8. International Data Transfers

Day Off LTD does not transfer personal data outside the UK or European Economic Area (EEA) unless necessary and only with proper safeguards in place to ensure compliance with GDPR.

9. Data Breach Notification

In the event of a personal data breach, Day Off LTD will:

• Notify affected individuals promptly
• Take appropriate measures to mitigate the impact of the breach

10. Audits and Compliance

Day Off LTD periodically reviews its data processing practices to ensure compliance with GDPR. External audits may also be conducted to validate security measures and data protection protocols.

Contact Information

If you have questions or concerns regarding this Data Processing Agreement or wish to exercise your data subject rights, please contact us at:

Day Off LTD
Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ
Email: info@day-off.app