January 2026 - Data processing terms update
We’ve updated Gleanin’s Data Processing Terms to ensure greater legal clarity, stronger data protections, and full alignment with current data protection regulations.
These updates reflect our ongoing commitment to transparency, security, and responsible data handling.
Why have we updated our Data Processing Terms?
The changes are designed to:
- Ensure alignment with UK GDPR and EU GDPR
- Clarify roles and responsibilities around personal data
- Strengthen our position on security, confidentiality, and breach handling
- Improve the overall structure and clarity of the terms
While the format has been modernised, the core purpose remains the same: to clearly explain how personal data is handled and protected.
What are the key updates?
1. Compliance & roles clarified
We’ve clarified that:
- You (the customer) act as the Controller of personal data
- Gleanin acts as the Processor
This reflects GDPR definitions and makes responsibilities clearer.
2. Stronger security and confidentiality detail
We’ve expanded how we describe:
- The security measures in place to protect personal data
- How confidentiality is maintained
- How Subject Access Requests (SARs) are supported and handled
3. Security breach responsibilities
We’ve added clearer detail on:
- Gleanin’s responsibilities if a security breach is identified
- How incidents are managed and communicated
Do I need to take any action?
We recommend reviewing the full updated Data Processing Terms so you’re aware of the changes, [here].
No immediate action is required unless you have questions or need clarification.
Questions or concerns?
If you have any questions about these updates or how they affect you, please contact us at:
We’re always happy to help.