Data Protection and GDPR Compliance

CM Debt Recovery complies with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. We ensure that:

Personal data is processed lawfully, fairly, and transparently.

Data is collected for specified, explicit, and legitimate purposes.

Only relevant and necessary data is collected and kept up to date.

Data is stored securely and retained only as long as necessary.

Individuals have the right to access their data, correct inaccuracies, and request deletion where applicable.

All staff are trained in data protection responsibilities and adhere to strict confidentiality policies.

We have appointed a Data Protection Officer to oversee compliance and handle any data protection queries or concerns. Any data subject wishing to exercise their rights under GDPR can contact us at: info@cmdebtrecovery.co.uk