VISION AND POLICY PROTECTION OF PERSONAL DATA (PRIVACY POLICY)
INTRODUCTION: THE DATA PROTECTION POLICY FOR FULLMARK SA
For the FULLMARK company, the protection of the personal data of individuals is a priority and above all a legal obligation (GDPR of application on 5/25/2018) to which FULLMARK assigns the highest priority.
With this policy text, we want to explain how we safeguard the rights and freedoms of data subjects and employees (“data subjects”) when we process personal data, both on paper and in the digital information environment.
We pay particular attention to riskier processing of personal data, such as (where applicable) using the data for specific purposes, taking appropriate technical and organizational measures in the processing, exchanging such data with other actors… We also monitor the processing of personal data of our staff and other actors. Especially when we use technologies that, without protection, can be a violation of their privacy.
OBJECTIFS DE LA POLITIQUE DE PROTECTION DES DONNÉES
Providing quality products and/or services is a top priority for FULLMARK. An important aspect here is high-quality processing of personal data. FULLMARK management pursues this policy to ensure that the rights and freedoms of all individuals are free from the processing of personal data.
The purpose of drafting this policy is to demonstrate the proper processing of personal data. It addresses the policy objectives and formalizes them. It clarifies the culture of data processing while respecting the rights and freedoms of everyone.
In concrete terms, we pursue the following objectives (to the extent that they apply): FULLMARK
- Is transparent about the personal data it processes and the purpose of processing, both to the data subject and to the supervisor. The communication carried out is fair, easy to access and understandable. The principle of transparency also applies when personal data is exchanged.
- Processes only data relevant to the execution of its tasks. Any task in which personal data is processed is lawful. This means, among other things, that the processing complies with the legal and statutory objectives of FULLMARK. This assessment is evaluated each time at a new treatment target.
- only processes personal data strictly necessary for the execution of activities
- Oversees the integrity of personal data throughout the processing cycle
- Do not retain data any longer than necessary. The necessity has been weighed against the legal obligations and the rights and freedoms of the person concerned.
- prevents offenses resulting from the processing of personal data. Information security, data protection in design and privacy-friendly default settings are tools for this. When an infraction occurs, it is reported in accordance with the relevant regulations
- is able to execute all applicable rights of a data subject, such as the right of access, copying and, if necessary, deletion. FULLMARK hereby monitors any restrictions applicable to these rights
- actively ensures that when processing personal data for specific purposes, the rights and freedoms (e.g. the right to transferability) of the data subject remain preserved.
- processes data in accordance with the rights and freedoms that apply in the European Economic Area and controls its application when data is exchanged externally. FULLMARK therefore complies with all legal and regulatory frameworks (i.e. Flemish, Federal and European rules) in the processing of personal data and has demonstrated, for this purpose, its responsibility with regard to personal data and those of others. FULLMARK also monitors and enforces applicable industry codes of conduct.
- can demonstrate that it is consistent with all policy objectives, in accordance with legal provisions. This accountability obligation is monitored by internal supervision and control and is enforceable in accordance with legal principles.