Why we need it
The Food Standards Agency is what is known as the ‘Controller’ of the personal data provided to us. The personal information we hold on you consists of the name and address of your business and associated contact details.
The Food Standards Agency obtains this information from a number of sources, including direct individuals, industry bodies, District Councils, Department of Agriculture, Environment and Rural Affairs (DAERA) and any other relevant government departments.
We need to collect this information for the purposes of fulfilling our statutory obligations under Regulation (EC) No 882/2004 and Regulation (EC) No. 854/2004 in relation to feed and food official controls.
What we do with it
We retain personal information only for as long as necessary to carry out these functions, and in line with our retention policy. This means this information will be retained for minimum of 7 years from receipt or for as long as the business is trading and for a certain period after it ceases trading or as new information becomes available.
All the personal data we process is located on servers within the European Union. Our cloud based services have been procured through the government framework agreements and these services have been assessed against the national cyber security centre cloud security principles.
No third parties have access to your personal data unless the law allows them to do so. In line with this commitment your information may be passed to DAERA or District Councils.
The Food Standards Agency may also share data with other government departments, public bodies, and organisations which perform public functions to assist them in the performance of their statutory duties or when it is in the public interest.
You have a right to see the information we hold on you by making a request in writing to the email address below. If at any point you believe the information we process on you is incorrect you can request to have it corrected. If you wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Officer who will investigate the matter.
If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner’s Office (ICO).