Data Protection Statement

Arthur Security Services Limited treats data protection as part of security, not separate from it. CCTV footage, visitor logs, access records and incident reports are personal data, and we handle them to the standards expected under UK GDPR, the Data Protection Act 2018 and BS 10800.

Our principles

• Lawful basis: a clear, documented reason for every category of data we process.
• Data minimisation: we collect only what the task requires.
• Retention limits: footage and logs are kept only as long as necessary — see our Privacy Policy for periods.
• Security: encrypted storage, role-based access, UK-based data and regular backups.
• Accountability: staff are trained, vendors are contracted, and practices are reviewed quarterly.

CCTV & operational data

Where we operate or monitor CCTV on a client's behalf, we follow the client's lawful basis and retention requirements and the ICO's CCTV guidance. Footage is accessed only by authorised personnel and only for legitimate security purposes.

Breach response

If a data breach occurs that is likely to affect your rights, we will notify the ICO within 72 hours where required, and inform affected individuals without undue delay.

Data Protection Officer

As a firm under 250 employees we are not legally required to appoint a DPO. Data-protection responsibility sits with our Managing Director and Compliance Officer, I.D. Wasiu Lawal. Contact info@arthursecurity.co.uk for any data-protection matter.

Your rights & complaints

You can exercise your GDPR rights at any time (see the Privacy Policy), and you have the right to complain to the ICO at ico.org.uk.