GDPR Compliance Statement

Scope

Evercam is committed to meeting and upholding the requirements set out within the EU GDPR. All of our work is carried out with protecting the right to privacy of individuals as a priority.  

Operating as data processors on behalf of our clients, we act at all times with the best interests of our clients in mind. We are happy to discuss any specific privacy-based requirements that our clients may have and will at all times strive to uphold the professional standards of both organisations. We seek at all times to process all data in a compliant and transparent manner, following a risk-based approach and strictly in accordance with the Data Controller’s documented instructions.

The principles which govern our approach to the EU GDPR include, but are not limited to the following:  

  • Processing all data in a compliant and transparent manner. 

  • Installing and operating all cameras with the rights of individuals in mind. 

  • Ensuring that all data held is accurate. 

  • Ensuring that all processing is lawful, fair and necessary for a specific purpose. 

  • Ensuring that all data is stored safely and securely. 

  • Ensuring that no data is retained for any longer than is necessary under the circumstances. 

It is recommended that signage is erected at the entrance to all sites informing anyone entering the site that a camera is in use. The signage should always be clearly visible and easy to understand.

Contact details of the data controller (Client) are used on the signage. These contact details can be used by anyone who has concerns around the use of the camera or by persons wishing to submit a Data Subject Access Request as permitted under Article 15 of the EU GDPR. 

Evercam does not decide on or respond to Data Subject Access Requests in its own capacity. Once the validity of the request has been verified by the Data Controller, Evercam will, where required and only on the documented instructions of the Data Controller, assist by providing the Data Controller with any relevant personally identifiable information so that the Data Controller can respond to the data subject within the one-month response period allowed under the GDPR.

Any queries regarding our compliance that our clients may have can be directed to the compliance team by writing to compliance@evercam.io.

As an organisation, we are continuously seeking to improve our procedures with regard to GDPR compliance and we will continue to work closely with our clients to achieve this shared goal.

—————————————————————

Created by: Compliance Manager (ISMS Team)

Creation date: 01.12.2022

Last modification date: 27.11.2025

Document approver: Head of Compliance