MARYADI LIMITED
DATA PROTECTION POLICY
Document Control
- Authored by: Adil Yermekov
- Authorized by: Mary Calistri
- Review cycle: Triennial
- Current review: March 2025
- Next scheduled review: March 2028
ORGANIZATIONAL OVERVIEW
MARYADI LIMITED (company registration 08655097) operates under UK jurisdiction with headquarters at C/O Taxassist Accountants 635 Bath Road, Burnham, Slough, Berkshire, United Kingdom, SL1 6AE.
Throughout this document, “MARYADI LIMITED,” “we,” “our,” or “us” refers to the organization as defined above.
OUR COMMITMENT TO DATA PROTECTION
MARYADI LIMITED maintains stringent data protection practices in accordance with the Data Protection Act 1998 and the EU General Data Protection Regulation (GDPR). We are registered as Data Controllers with the Information Commissioner’s Office (ICO), with our registration details publicly accessible via the ICO website.
We are committed to safeguarding the privacy and confidentiality of all personal information entrusted to us. This policy establishes guidelines for the appropriate handling of personal data across all mediums, whether physical or digital.
DATA CATEGORIES AND COLLECTION METHODS
Personal Data Defined
Personal data encompasses any information relating to an identifiable living person, either directly or indirectly.
Student Information
We collect student information directly from parents/guardians or through educational agencies acting under parental instruction. This includes:
- Complete identification (full names, addresses, contact details)
- Medical information
- Passport details and identification images
- Family photographs
- Educational information
Host Family Information
We gather host family data through:
- Initial application submissions (email/telephone)
- Detailed home visits conducted by MARYADI LIMITED Area Managers
Host family records typically include:
- Complete household member information
- Regular household visitor details
- Residential information and photographs
- Contact information
- Property documentation
LEGAL FRAMEWORKS FOR DATA PROCESSING
We process personal information under the following legal bases:
1. Contractual Obligation
When you engage our services or agree to our terms, we process necessary information to fulfill our contractual responsibilities, including:
- Identity verification
- Service delivery
- Product provision
- Advisory support
This processing continues until contract termination by either party.
2. Consent-Based Processing
We process certain information based on your explicit or implicit consent, particularly when:
- You browse our website
- You request information about our business
- You communicate with us via email or other channels
You may withdraw consent at any time by contacting info@maryadi.com, though this may impact service availability.
3. Legitimate Interest
We may process information where a legitimate interest exists for either party, following careful consideration of:
- Alternative approaches
- Potential impact assessment
- Reasonable expectations
Examples include organizational administration, responding to communications, risk management, and protection of legal rights.
4. Legal Obligation
We process information as required to comply with statutory obligations, including responding to authorized legal requests.
DATA PROTECTION PRINCIPLES
Our data handling adheres to these fundamental principles:
- Fair and lawful processing
- Purpose limitation
- Data minimization
- Accuracy and currency
- Storage limitation
- Rights-respecting processing
- Security maintenance
- Cross-border transfer protection
SPECIFIC DATA USAGE SCENARIOS
Public Information Sharing
Content posted publicly on our website may be viewed and used by third parties beyond our control.
Content Complaints
We investigate complaints about website content and make removal decisions based on legal requirements and free speech considerations.
Employment Information
- Job application information may be retained for up to three years
- Employee information is collected throughout employment for relevant purposes
- Post-employment records are retained for six years
Customer Support Communications
We record support interactions to enhance service quality and maintain communication records.
Complaint Handling
Complaint information is used for resolution and may be shared with relevant third parties at our discretion.
DATA SHARING PRACTICES
We treat all data as confidential and share information selectively:
- Student and host family profiles are shared only with relevant parents, schools, and host families
- Emergency situations may require data sharing with appropriate services
WEBSITE DATA COLLECTION
Cookie Usage
Our website employs cookies for:
- Usage tracking
- Live chat support
- These may include session cookies and persistent cookies
Browsing Activity Data
We record technical information including:
- Geographic location
- Internet service provider
- IP address
- Browser specifications
Remarketing
With your consent, we may use remarketing cookies to deliver targeted advertisements on third-party websites.
SECURITY MEASURES
We implement appropriate security measures while acknowledging inherent internet transmission risks. Our safeguards include:
- Two-factor authentication
- Cloud-based secure storage
- Limited physical storage
- Regular security reviews
DATA RETENTION POLICY
- Student data: Retained throughout guardianship plus 7 years
- Non-enrolled student data: Removed immediately
- Host family data: Maintained while actively hosting plus 7 years
- All data: Automatically deleted after 7 years of inactivity
YOUR RIGHTS UNDER DATA PROTECTION LAW
Information Access
You may request access to your personal information by:
- Emailing info@maryadi.com
- Calling +44 2037 690 458
- Writing to our registered address
Additional Rights
You maintain the following rights:
- To be informed about data processing
- To access your personal data
- To rectify inaccurate information
- To request erasure (“right to be forgotten”)
- To restrict processing
- To data portability
- To object to certain processing
- Regarding automated decision-making (not applicable)
TECHNICAL SAFEGUARDS
We employ SSL certificates for secure data transmission between our systems and your browser.
COMPLAINTS PROCEDURE
Data protection complaints follow our standard complaints procedure and may be referred to appropriate regulatory bodies.
POLICY MANAGEMENT
This policy undergoes review every three years minimum by the Director or designated representative.
CONTACT INFORMATION
For inquiries or subject access requests, please contact Adil Yermekov at info@maryadi.com.