Back
E&E Work — The Live UK Logistics Network

GDPR Policy

E&E Work Ltd · Last updated 11 May 2026

1. Our Commitment to GDPR

E&E Work Ltd is committed to full compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy explains how we implement GDPR principles across our Platform and the rights available to data subjects.

2. Data Protection Principles

We process personal data in accordance with the following principles:

  • Lawfulness, Fairness & Transparency — we process data lawfully and inform users clearly
  • Purpose Limitation — data is collected only for specified, legitimate purposes
  • Data Minimisation — we collect only what is necessary for platform operations
  • Accuracy — we take reasonable steps to keep data accurate and up to date
  • Storage Limitation — data is not retained longer than necessary
  • Integrity & Confidentiality — we apply appropriate security measures
  • Accountability — we can demonstrate compliance with these principles

3. Lawful Bases for Processing

E&E Work Ltd relies on the following lawful bases to process personal data on the Platform:

  • Contract Performance — processing your account data to provide the services you signed up for
  • Consent — for optional data sharing, such as sharing documents with companies or appearing on the live workforce map
  • Legitimate Interests — platform security, fraud prevention, and service improvement
  • Legal Obligation — compliance with employment, tax, and regulatory law

4. Special Category Data

Certain data processed on the Platform may constitute special category data under UK GDPR, including biometric data (photographs on ID documents) and nationality/immigration status (right-to-work documents). This data is processed solely for the purpose of verifying employment eligibility and is handled with the highest level of security and access restriction.

5. Consent Management

Where we rely on consent as our lawful basis, we obtain clear, unambiguous consent before processing. You can withdraw consent at any time through your account settings or by contacting us. Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.

Consent is obtained at the following points:

  • Account registration — agreement to our Terms & Conditions and GDPR processing notice
  • Document sharing — explicit opt-in before sharing documents with companies
  • Map visibility — you control your own status and visibility on the live map

6. Data Subject Rights

Under UK GDPR, you are entitled to exercise the following rights:

  • Right of Access — obtain a copy of the personal data we hold about you
  • Right to Rectification — correct any inaccurate personal data
  • Right to Erasure — request deletion of your data where processing is no longer necessary
  • Right to Restrict Processing — limit how we process your data in certain circumstances
  • Right to Data Portability — receive your data in a structured, machine-readable format
  • Right to Object — object to processing based on legitimate interests
  • Rights Related to Automated Decision-Making — not be subject to decisions based solely on automated processing that significantly affects you

To exercise your rights, submit a request to: gdpr@eeworkapp.co.uk

We will respond to valid requests within one calendar month.

7. Data Transfers

Your data is stored on servers within the European Economic Area (EEA) and the United Kingdom. Where data is transferred outside these regions, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions.

8. Data Breaches

In the event of a personal data breach, we will notify the ICO within 72 hours where the breach is likely to result in a risk to individuals' rights and freedoms. Affected individuals will be informed without undue delay where the breach poses a high risk to their rights.

9. Data Protection Officer

For all GDPR-related enquiries, please contact our Data Protection representative at: gdpr@eeworkapp.co.uk

10. Supervisory Authority

The supervisory authority for data protection in the United Kingdom is the Information Commissioner's Office (ICO). You have the right to lodge a complaint with the ICO if you believe your data has been processed unlawfully. Visit ico.org.uk or call 0303 123 1113.