New Star Media :: New Star Media GDPR Compliance
New Star Media GDPR Compliance


This page was last changed on: 01/05/18

New Star Media GDPR Compliance (Email Update 1)

One of the biggest changes to UK data privacy law comes into effect on 25th May

The General Data Protection Regulation, known as GDPR is a fundamental change to how your customers personal data can be tracked, stored and used. This new regulation is designed to give people more control over their personal data and to be made aware of how and why their personal data is being used.

Is your business GDPR compliant?

All business’s in the UK and EU are required to be GDPR compliant by 25th May 2018 or risk heavy fines.

As your website provider we will work to ensure that your website is GDPR compliant by the required deadline. However, this does not extend further than your website and any data that we collect and manage for you.

It is your responsibility to ensure that your business (and your third-party service providers) is GDPR compliant in relation to any third-party data that you collect and use.

Click here for a well-documented guide to becoming compliant.

How does GDPR affect my website?

As an example, when a customer submits a vehicle enquiry form on your website, the following needs to happen:

  • They must be made aware of what data is being collected
  • They must be made aware of what the data will be used for
  • They must give opt-in consent for their data to be stored
  • They must be given 'The Right to Be Forgotten'

All of this means that they must easily be able to contact you and request that their personal data is removed from databases, email lists, call lists etc.

Also under GDPR guidelines, we can only store data for what is deemed to be a reasonable time and must be able to prove that data collected is consented and for a valid reason.

What we are doing to make your website GDPR compliant

Before the 25th May deadline we will be making the following changes to your website and Engine Room to ensure that any data gathered has been done so in truthful manner, with reason and with consent.

  • Making the data collected only available to you, the intended and not shared
  • Implementing the ability to remove customer data on request
  • Ensuring that all privacy and cookie information is relevant and up to date
  • Running complete threat assessments for the data that we hold
  • Ensuring all reasonable security and encryption methods are in place and compliant

What we need from you

Becoming GDPR compliant involves sharing GDPR policies with partners, clients and suppliers. We will be providing you with our GDPR Compliance Document as outlined in the schedule below.

In the meantime, we will by the 1st May 2018 require the following information from you in order to ensure that we, yourselves and any relevant third parties are GDPR compliant.

  • The name of your GDPR Compliance Officer/Data Protection Officer
  • Contact details of your GDPR Compliance Officer/Data Protection Officer (including address, telephone number and email)
  • A copy or your GDPR compliance document

Please note that we may make an addendum to your contract to reflect these changes.

Please send the above to:

or via post:

New Star Media (GDPR)
Paper Mews Place
290 High Street

Updated Privacy Policy

As part of our ongoing improvements to our Privacy Policy, we have created a Privacy area with clear and informative information regarding the data used and collected on our websites.

View our new privacy area at:

New Star Media Ltd. GDPR Policy Document

We have made available our GDPR Policy Document for all clients and any person interested in how we are GDPR compliant. This document will come into effect on 25th May 2018.

View our GDPR Policy Document at: New Star Media Ltd. GDPR Policy Document


We take your data seriously - discover how we handle your privacy
Learn more

Our timeline to compliance

Date What is happening
27 March 2018 Widespread contact to all our clients providing a brief overview of what can be expected over the coming weeks regarding making sites GDPR compliant.
16 April 2018 We will begin deploying updates across our sites, this will include changes to privacy statements, form updates, retention policy changes, etc. You may start seeing changes to your website and Engine Room from as early as this date but should not affect your day-to-day workflow within Engine Room.
23 April 2018 A copy of our GDPR Policy Document will be made available that states everything we are doing to be compliant as well as contain contact details for our GDPR Compliance Officer.
1 May 2018 We require a copy of all our clients GDPR Policy Documents to ensure guidelines are met.
25 May 2018 On or before this date, all Engine Room sites will be GDPR compliant.

We will keep you updated via email on any updates or changes, however this page will always be available and updated with important information related to the GDPR process.