SEiNG and GDPR: How We Protect Your Data

When you use SEiNG, you’re responsible for the personal data captured by your cameras. That makes you the data controller under UK GDPR. SEiNG is here to help as a data processor, providing secure cloud storage and management for your footage, so you can stay compliant with data protection law.

Here’s what you need to know.

Under UK GDPR:

• You are the data controller – you decide why you record CCTV, where cameras are placed, how long footage is kept, and who can access it.
• SEiNG is the data processor – we process and store your footage securely, following your instructions and keeping it safe.

This distinction matters because GDPR puts the responsibility for lawful processing squarely with you, while we provide the tools and security to make it straightforward.

We’ve built SEiNG to help you comply with UK GDPR requirements for cloud CCTV:

• Security and Confidentiality: All footage is encrypted both in transit and at rest. Role-based access, Single Sign-On, and Multi-Factor Authentication keeps your data secure.
• Customisable Retention Policies: You decide how long footage is stored. SEiNG automatically deletes recordings according to your retention settings, helping you comply with storage limitation rules.
• UK-Based Data Centres: All footage stays in the UK, so you don’t need to worry about international data transfer rules.

To stay fully compliant, you’ll need to:

1. Tell people you’re recording – use clear signage and explain the purpose of surveillance.
2. Collect only what you need – position cameras to avoid capturing private spaces unnecessarily.
3. Keep data accurate and relevant – make sure recordings cover only the areas and events you need, review them regularly, and delete any unnecessary or outdated footage.
4. Set retention policies – only store footage as long as necessary, using SEiNG’s retention settings.
5. Conduct Data Protection Impact Assessments (DPIAs) when necessary – especially if cameras cover sensitive areas or use advanced tech. Download the ICO’s template here.
6. Respond to Subject Access Requests – you must provide individuals with their footage if requested. SEiNG can support this, as you can create secure links in just a few clicks.

Using SEiNG doesn’t remove your obligations under UK GDPR, but it gives you the tools to manage them effectively. With secure cloud storage, access controls, and flexible retention policies, you can focus on running your business while keeping personal data safe.