Company Policies

Policy Statement

Coresecure Services Ltd is fully committed to ensuring the health, safety, and welfare of all its employees, contractors, clients, and any other persons who may be affected by its operations. We recognise that the security industry presents unique operational challenges, and we take our duty of care seriously at every level of the organisation.

It is the policy of Coresecure Services Ltd to comply with all relevant health and safety legislation, including the Health and Safety at Work Act 1974, and to exceed minimum legal requirements wherever it is reasonably practicable to do so.

Responsibilities

Health and safety is a shared responsibility across our organisation:

• Directors & Management — responsible for establishing and maintaining the company's health and safety framework, providing adequate resources, and leading by example.
• Supervisors & Team Leaders — responsible for ensuring health and safety procedures are followed on site and for conducting regular risk assessments.
• All Employees & Officers — responsible for cooperating with health and safety procedures, reporting hazards promptly, and taking reasonable care of their own and others' wellbeing.
• Clients & Site Owners — responsible for providing relevant site-specific risk information and maintaining safe working environments for our deployed personnel.

Our Commitments

Coresecure Services Ltd commits to the following health and safety standards:

• Conducting thorough risk assessments for all operational environments prior to deployment
• Providing appropriate personal protective equipment (PPE) where required
• Ensuring all personnel receive site-specific health and safety briefings before commencing duties
• Maintaining up-to-date first aid provisions and trained first aiders within the team
• Regularly reviewing and updating risk assessments to reflect changing operational conditions
• Providing a clear and confidential process for reporting health and safety concerns without fear of reprisal
• Investigating all accidents, near misses, and incidents thoroughly and taking corrective action

Incident Reporting

All accidents, incidents, and near misses — however minor — must be reported immediately to a supervisor and recorded in the company's incident log. Where required under RIDDOR (Reporting of Injuries, Diseases and Dangerous Occurrences Regulations 2013), incidents will be reported to the Health and Safety Executive without delay.

Coresecure operates a strict no-blame culture in relation to genuine health and safety reporting. Employees are encouraged to report all hazards and incidents promptly to enable swift corrective action.

Training & Competence

All Coresecure personnel receive comprehensive health and safety training as part of their induction and ongoing professional development programme. This includes manual handling, conflict management, lone worker procedures, first aid awareness, and site-specific safety protocols. Training records are maintained for all employees and reviewed regularly.

Policy Statement

Coresecure Services Ltd is committed to protecting the privacy and personal data of all individuals we interact with, including employees, clients, contractors, and visitors. This policy sets out how we collect, use, store, and protect personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Coresecure Services Ltd is the data controller for personal data processed by the company. We are registered with the Information Commissioner's Office (ICO) and take our data protection obligations seriously.

Data We Collect

We may collect and process the following categories of personal data:

• Client Data — contact names, email addresses, phone numbers, business addresses, and contractual information
• Employee Data — identity documents, DBS check results, SIA licence details, payroll information, and employment records
• Website Data — IP addresses and browser data collected through cookies when visiting our website
• CCTV Data — images and footage collected as part of our surveillance services, subject to client-specific data agreements
• Enquiry Data — names, contact details, and messages submitted via our contact forms

How We Use Personal Data

Personal data is collected and processed for the following lawful purposes:

• Fulfilling contractual obligations with clients and employees
• Processing enquiries and providing quotes for security services
• Vetting and employing security personnel in compliance with SIA requirements
• Managing payroll, HR, and employment administration
• Complying with legal and regulatory obligations
• Improving our services and communicating with existing clients

Your Rights

Under UK GDPR, you have the following rights in relation to your personal data:

• Right of Access — you may request a copy of the personal data we hold about you
• Right to Rectification — you may request correction of inaccurate or incomplete data
• Right to Erasure — you may request deletion of your personal data where there is no legitimate reason for its continued processing
• Right to Restrict Processing — you may request that we limit how we use your data in certain circumstances
• Right to Data Portability — you may request your data in a structured, machine-readable format
• Right to Object — you may object to processing based on legitimate interests or for direct marketing

To exercise any of these rights, please contact us at info@coresecure.org.uk. We will respond within 30 days.

Data Retention

We retain personal data only for as long as is necessary to fulfil the purpose for which it was collected, or as required by law. Employee records are retained for a minimum of 6 years following the end of employment. Client contract data is retained for 6 years following contract completion. Enquiry data is held for up to 12 months.

Data Security

Coresecure Services Ltd implements appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, or disclosure. All staff with access to personal data receive data protection training, and access to sensitive data is restricted on a need-to-know basis.

Contact & Complaints

For any data protection queries or to exercise your rights, contact us at: info@coresecure.org.uk. If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

Equal Opportunities Statement

Coresecure Services Ltd is an equal opportunities employer and is committed to creating an inclusive workplace where all individuals are treated with dignity, fairness, and respect. We believe that diversity strengthens our organisation and enriches the service we provide to our clients.

We will not tolerate discrimination, harassment, bullying, or victimisation of any kind in our workplace. This policy applies to all aspects of employment including recruitment, selection, training, development, promotion, pay, and conditions of work.

Our Equal Opportunities Commitments

• Recruit, develop, and promote employees based on merit and ability alone
• Provide equal access to training, development, and career progression opportunities
• Foster a culture of inclusion, respect, and dignity for all staff
• Take prompt and decisive action against any form of discrimination or harassment
• Regularly review our employment practices to identify and address any potential inequality
• Ensure all staff understand their rights and responsibilities under this policy
• Make reasonable adjustments to support employees with disabilities

Protected Characteristics

Under the Equality Act 2010, Coresecure Services Ltd will not discriminate against any individual on the basis of the following protected characteristics:

• Age
• Disability
• Gender reassignment
• Marriage and civil partnership
• Pregnancy and maternity
• Race, colour, nationality, and ethnic or national origin
• Religion or belief
• Sex
• Sexual orientation

Modern Slavery Statement

Coresecure Services Ltd is committed to acting ethically and with integrity in all of our business relationships. We have a zero-tolerance approach to modern slavery and human trafficking in any form — within our organisation and throughout our supply chain.

Modern slavery is a crime and a violation of fundamental human rights. It takes various forms, including forced labour, debt bondage, child labour, and human trafficking. We are committed to ensuring that no form of modern slavery exists within our business or in the businesses of those we engage with.

Supply Chain Due Diligence

We take a risk-based approach to our supply chain, implementing due diligence processes to identify and address any potential modern slavery risks. This includes:

• Vetting all suppliers, subcontractors, and agency partners before engagement
• Requiring all business partners to confirm their compliance with the Modern Slavery Act 2015
• Ensuring all employed security personnel are legally entitled to work in the UK
• Monitoring employment conditions across our workforce for any indicators of exploitation
• Conducting regular reviews of our supply chain practices and risk assessments

Reporting Concerns

Any employee, contractor, or member of the public who suspects or witnesses modern slavery or human trafficking is encouraged to report it immediately. Reports can be made:

• Internally via email: info@coresecure.org.uk
• Via the Modern Slavery Helpline: 0800 0121 700 (free, 24/7)
• Directly to the Police by calling 999 in cases of immediate danger

All concerns raised will be treated with complete confidentiality and investigated with the utmost seriousness. Coresecure operates a strict non-retaliation policy for anyone raising a genuine modern slavery concern in good faith.