Legal

Data Protection Statement

Last updated: 07/03/2026

Our approach

Aegis Care Shield applies data protection by design and by default across recruitment, onboarding, safeguarding, staffing operations, and client service delivery.

Governance and accountability

We maintain accountability for personal data through role-based access controls, confidentiality obligations, policy controls, and audit logging for key actions in our systems.

Lawfulness, fairness and transparency

We process personal data only where lawful and necessary, and we explain processing clearly through our privacy and cookie notices.

Data minimisation and accuracy

We limit collection to data required for care staffing, compliance and safeguarding obligations, and we provide mechanisms to correct inaccurate records.

Storage limitation and retention controls

We apply retention controls aligned to legal and regulatory obligations. Data no longer required is securely deleted or anonymised where appropriate.

Security controls

Security controls include strong authentication, least-privilege access, secure hosting, document handling controls, and monitoring/audit records for sensitive workflows.

Processor and supplier management

Where we use suppliers (for example communications, hosting or workflow services), we assess them and contractually require appropriate data protection safeguards.

Data subject rights handling

Requests for access, correction, erasure and related rights are managed through controlled internal procedures. Contact: info@aegiscareshield.com.

Data incidents

We maintain internal incident response procedures for triage, containment, investigation, remediation and regulatory notification where required.