Aconit is committed to aligning with the General Data Protection Regulation (GDPR) principles. This page outlines our approach to GDPR and your rights under this regulation.
Our Commitment to GDPR
As a data processor and controller, we take GDPR principles seriously. We are implementing appropriate technical and organizational measures to enhance the security of personal data and align our practices with GDPR principles.
Data Processing Principles
We adhere to the following data processing principles:
- Lawfulness, fairness, and transparency: We process personal data lawfully, fairly, and in a transparent manner.
- Purpose limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it in a manner that is incompatible with those purposes.
- Data minimization: We limit the personal data we collect to what is necessary for the purposes for which it is processed.
- Accuracy: We take reasonable steps to ensure that personal data is accurate and, where necessary, kept up to date.
- Storage limitation: We keep personal data in a form that permits identification of data subjects for no longer than is necessary for the purposes for which it is processed.
- Integrity and confidentiality: We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
Your Rights Under GDPR
As a data subject, you have the following rights:
- Right to access: You have the right to request a copy of the personal data we hold about you.
- Right to rectification: You have the right to request that we correct any inaccurate personal data we hold about you.
- Right to erasure: You have the right to request that we delete your personal data in certain circumstances.
- Right to restrict processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
- Right to data portability: You have the right to request that we transfer your personal data to another controller in certain circumstances.
- Right to object: You have the right to object to the processing of your personal data in certain circumstances.
- Rights related to automated decision-making: You have the right not to be subject to a decision based solely on automated processing that produces legal effects concerning you or similarly significantly affects you.
Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our GDPR compliance. You can contact our DPO at dpo@aconit.com.
International Data Transfers
When we transfer personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your personal data. These safeguards may include Standard Contractual Clauses approved by the European Commission.
Data Breach Notification
In the event of a personal data breach, we will notify the relevant supervisory authority without undue delay and, where feasible, not later than 72 hours after having become aware of the breach. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.
Exercising Your Rights
If you wish to exercise any of your rights under the GDPR, please contact us at privacy@aconit.com. We will respond to your request within one month of receiving it. Please note that we may need to verify your identity before we can fulfill your request.
Contact Us
If you have any questions about our GDPR compliance, please contact us at privacy@aconit.com.