The EU General Data Protection Regulation (“GDPR”) came into force on 25 May 2018.
The new Regulation aims to standardise data protection laws and processing across the EU, giving people greater rights to access and control their personal information.
At RCS2, we are committed to ensuring protection of all personal information that we hold, and to provide and to protect all such data. We recognise our obligations in updating and expanding this program to meet the requirements of GDPR.
At RCS2, we are dedicated to safeguarding the personal information under our control and in maintaining a system that meets our obligations under the new regulations. Our practice is summarised below.
How We Prepared for GDPR
RCS2 already have a attitude of not sharing confidential data between different customers and other contacts, unless explicitly agreed upon. Data is kept in a confidential matter and anonymized where required. Next to that, the following was implemented/applied:
Formal online training in regards with GDPR and employee attitude around usage and retention of data.
Ensure that all equipment used at RCS2 has the proper encryption methods in place to protect data at rest.
Data Subject Rights
We provide a single point of contact for asking questions or raising concerns in regards with the privacy of your data. This point of contact can be reached by mailing to firstname.lastname@example.org. The following are examples of typical queries:
what personal data we hold
the purposes of the processing
the categories of personal data concerned
the recipients to whom the personal data has/will be disclosed
how long we intend to store your personal data for
if we did not collect the data directly from them, information about the source
the right to have incomplete or inaccurate data about them corrected or completed and the process for requesting this
the right to request erasure of personal data (where applicable) or to restrict processing in accordance with data protection laws, as well as to object to any direct marketing from us and to be informed about any automated decision-making that we use
the right to lodge a complaint or seek judicial remedy and who to contact in such instances.
Information Security Measures
RCS2 has taken measures to ensure the protection and privacy of your data. One of those measures is the implementation and enforcement of an encryption policy for all devices used in the organization.
If you have any concerns or questions regarding GDPR and the privacy of your data, then please direct them to email@example.com.
Last reviewed 20 May 2021