Business enquiries
0800 0379 999


GDPR is applicable to all businesses regardless of size or the industry in which they operate. Penalties for non-compliance include large fines, which can be up to 4% of annual global turnover. The Information Commissioners Office (ICO) are responsible for this area of legislation including; monitoring, data breaches and fines.

Download a copy of our GDPR Data Protection Assessment

GDPR Covers a number of areas, including data protection, processing, ownership and access to data

Lessen the impact

We aim to support all our business partners in being GDPR Compliant and regularly provide guidance on best practice.

The ICO recommends that firms must follow the following eight data protection principles when handling personal information. These say that personal information must be:

  • Fairly and lawfully processed;
  • Processed for specified purposes;
  • Adequate, relevant and not excessive;
  • Accurate and, where necessary, kept up to date;
  • Not kept for longer than is necessary;
  • Processed in line with the rights of the individual;
  • Kept secure;
  • Not transferred to countries outside the European Economic Area unless the information is adequately protected.

AAH DIRECT next steps

As our Marketing Partners and suppliers are considered to be processors of personal data we are, as part of our obligations under GDPR, required to ask for details of their data handling processes.

Therefore we will be in contact in due course with a straight forward Data Protection Assessment which we will ask all businesses we work with to complete.

Further reading

In the mean time we encourage you to visit the ICO website. On there you can find out more about GDPR and download useful guides to ensure compliance with the current Data Protection Act.