GDPR Compliance Policy for S-Stechnology
S-Stechnology is committed to protecting the privacy and data rights of individuals in accordance with the General Data Protection Regulation (GDPR). This policy outlines how we collect, use, disclose, and protect personal data.
1. Data Collection and Processing:
We collect personal data only for specific, explicit, and legitimate purposes. We inform individuals about the purposes of data collection and obtain their consent where required.
2. Lawfulness, Fairness, and Transparency:
We process personal data lawfully, fairly, and transparently. We provide individuals with clear information about how their data is processed, including the legal basis for processing.
3. Data Minimization:
We collect only the data necessary for the intended purpose and limit the processing of personal data to what is essential.
4. Accuracy of Data:
We take reasonable steps to ensure the accuracy of personal data and update or correct inaccurate data promptly.
5. Storage Limitation:
We store personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law.
6. Security Measures:
We implement appropriate technical and organizational measures to ensure the security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction, or damage.
7. Data Subject Rights:
We respect data subjects’ rights under the GDPR, including the right to access, rectify, erase, restrict processing, data portability, and object to processing.
8. Data Transfer:
We ensure that any transfer of personal data outside the EU/EEA is done in compliance with GDPR requirements, including using approved transfer mechanisms.
9. Data Breach Notification:
In the event of a data breach that poses a risk to individuals’ rights and freedoms, we notify the relevant supervisory authority and affected individuals without undue delay.
10. Data Protection Officer (DPO):
We designate a Data Protection Officer responsible for overseeing GDPR compliance and serving as a point of contact for data subjects and supervisory authorities.
11. Compliance Monitoring and Training:
We regularly review and update our data protection practices, conduct GDPR compliance assessments, and provide training to employees handling personal data.
12. Contact Information:
For questions or concerns about our GDPR compliance or data protection practices, please contact our Data Protection Officer at dpo@s-stechnology.com.