GDPR COMPLIANCE
Introduction
On 25 May 2018 the new regulation (EU) 2016/679 of the European parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the “Regulation”) has come into force and impacted each and every organisation that holds or processes personal data. It introduced new responsibilities including the obligation to demonstrate compliance with the Regulation.
The individuals will now have greater say over how and why their personal data is gathered, processed and disposed of. Any organization that works with EU residents’ personal data in any manner, irrespective of location, has obligations to consistently protect the data.
Our commitments
We have always respected our client’s right to data protection and committed to high standards of information security, privacy and transparency, whether acting as an administrator or as a personal data processor.
In connection with the Regulation, we updated the internal policies and introduced new technical and organizational measures to protect personal data.
A brief list of currently implemented measures is as follows:
-
Internal directives for personal data protection;
-
Contractual documentation with personal data processors;
-
HW firewall;
-
Security patches (software and firmware);
-
Information systems backup;
-
Up to date antivirus software;
-
User access control methods;
-
Password policy;
-
Inventory of systems that process PD;
-
Regular employee trainings on the protection of personal data;
Finally, we would like to make you sure that we’ll continue in our efforts to be your trustworthy and reliable partner.