Data Protection Policy
We will meet all applicable requirements in properly protecting the data, including:
- Laws
- Regulations
- Industry standards
- Contractual commitments
The protections we apply to information assets will be in proportion to the value and sensitivity of the information, and will balance the sensitivity of the information against:
- The cost of controls
- The impact of the controls on the effectiveness of business operations
- The risks of disclosure, modification, destruction, or unauthorised use of the information
We will protect all types of confidential data, including but not limited to:
- Financial
- Business information of our own, and our customers.
- Personal data, both of our employees and of our customers
We will ensure that these controls are accepted by all employees, vendors, service providers, representatives, and associates of Pushologies who may have access to our data. This includes ensuring that all personnel at all levels are provided regular awareness training, and are held accountable for safeguarding information assets
We will ensure that all our Data Sub-processors are adequately vetted and bound by equivalent data protection standards to maintain data privacy and security.
We will ensure that access to information is controlled, and based upon, job function and need-to-know criteria and we will complete Data Protection Impact Assessments where appropriate.
We will maintain proper business continuity and security procedures, including information systems, networks, resources, and business processes.
We will report any suspected or actual breaches of these policies, and will cooperate with investigative agencies and regulators
We will ensure that the necessary resources will be allocated to swiftly and properly respond to any suspected data breaches and comply with any Data Subject Access Requests in a timely manner.
Updated 3 months ago