Wrightbus Publishes Data Protection Policy in Line with UK GDPR
96 hours
1 month
24 hours
What Happened
The policy applies to all personal data processed by Bamford Bus Company (Wrightbus) across manufacturing, HR, sales, and other operations. It outlines seven core data protection principles, including lawfulness, purpose limitation, and data minimization, and establishes roles for the Board, a Data Protection Officer (DPO), and employees.
- Lawfulness, fairness and transparency
- Purpose limitation
- Data minimization
- Accuracy
- Storage limitation
96 hourshours
Extended from 72 hours under the Data (Use and Access) Act 2024 for high-risk breaches.
Why this matters
Data protection laws require companies to process personal data lawfully and transparently. This policy shows Wrightbus's commitment to safeguarding privacy and complying with updated UK regulations.
Terms in This Story
- UK GDPR
- UK General Data Protection Regulation; the data protection law that governs how personal data is processed in the United Kingdom.
- Data Protection Officer (DPO)
- An individual appointed by an organization to oversee data protection strategy and compliance with GDPR.
- Personal data
- Any information relating to an identified or identifiable living individual.
- Special category data
- Sensitive personal data that requires extra protection, such as health, biometric, or political opinions.
Related coverage
- Wrightbus Celebrates 80 Years of British Manufacturing and Zero-Emission Innovation
- Wrightbus WB9: 9-Meter Electric Bus Promises 300 km Range, 282 kWh Battery
- Wrightbus Returns to Luxury Coach Market with Contour Diesel Coach
- Mercedes-Benz and TYTAN Technologies Sign MoU for Drone Defense Vehicles
- Hyundai Motor Group Says Real-World AI Integration Attracts Silicon Valley Engineers