Overview

Wislo Holdings Ltd is committed to maintaining the highest standards of data protection, confidentiality, and information security across all of our consultancy activities.

 

We recognise that our clients operate in environments where trust, compliance, and governance are critical. Our approach is designed to protect sensitive information while enabling effective collaboration and delivery.

​

Regulatory Compliance

Wislo operates in accordance with applicable UK data protection legislation, including:

• UK General Data Protection Regulation (UK GDPR)

• Data Protection Act 2018

We ensure that all personal data is:

• Processed lawfully, fairly, and transparently

• Collected for specified, explicit purposes

• Limited to what is necessary for delivery

• Kept accurate and up to date

• Retained only as long as required

• Protected through appropriate security measures

 

Data Handling Principles

Across all engagements, Wislo applies the following principles:

• Data minimisation – only collecting what is necessary

• Purpose limitation – using data solely for agreed outcomes

• Confidentiality by default – treating all client information as sensitive

• Controlled access – limiting data access to authorised individuals only

 

Security Measures

We implement appropriate technical and organisational measures to safeguard data, including:

 

Technical Controls

• Secure cloud-based systems with access controls

• Encryption of data in transit and, where appropriate, at rest

• Multi-factor authentication (where available)

• Regular software updates and patching

 

Organisational Controls

• Access restricted to authorised personnel

• Use of trusted, reputable technology providers

• Defined processes for handling sensitive information

• Ongoing awareness of data protection responsibilities

 

Client Data and Confidential Information

As part of our consultancy services, Wislo may process client data, including strategic, operational, and organisational information.

​

We:

• Treat all client data as confidential

• Use it solely for agreed project purposes

• Do not share it with third parties without consent (unless legally required)

• Apply strict controls to prevent unauthorised access or disclosure

 

Third-Party Providers

Where third-party tools or partners are used (e.g. cloud platforms, analytics, collaboration tools):

• We select providers with strong security and compliance standards

• We ensure appropriate contractual safeguards are in place

• We do not transfer responsibility for protecting client data

 

Data Retention

Wislo retains data only for as long as necessary to:

• Deliver services

• Meet contractual obligations

• Comply with legal and regulatory requirements

 

Data is securely deleted or anonymised when no longer required.

 

Data Subject Rights

We support and respect all individual rights under UK GDPR, including:

• Right of access

• Right to rectification

• Right to erasure

• Right to restrict processing

• Right to data portability

 

Requests can be made via the contact details below.

 

Incident Management

In the unlikely event of a data breach, Wislo will:

• Act promptly to contain and assess the incident

• Notify affected parties where appropriate

• Report to the Information Commissioner’s Office (ICO) where required

• Implement corrective measures to prevent recurrence

 

Continuous Improvement

We take a pragmatic and evolving approach to data protection and security, regularly reviewing:

• Our processes and controls

• Technology and tools used

• Emerging risks and best practice

 

Contact

For any data protection or security enquiries, please contact:

Wislo Holdings Ltd
Email: contact@wilso.co.uk
Website: www.wislo.co.uk