General Data Protection Regulation (GDPR) Policy for Betalight B.V.
1. Introduction
Betalight B.V. is committed to safeguarding the privacy and security of personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This GDPR Policy outlines our approach to data protection and our obligations under the GDPR.
2. Scope
This policy applies to all personal data processed by Betalight B.V., regardless of the format or medium in which the data is stored.
3. Data Collection and Processing
a. Lawfulness, Fairness, and Transparency:
Personal data shall be processed lawfully, fairly, and transparently.
b. Purpose Limitation:
Personal data shall only be collected for specified, explicit, and legitimate purposes and not processed in ways incompatible with those purposes.
c. Data Minimisation:
Only data that is adequate, relevant, and necessary will be collected and processed.
d. Accuracy:
Personal data shall be accurate and kept up to date as required.
e. Storage Limitation:
Personal data will not be retained longer than necessary for its intended purposes.
f. Integrity and Confidentiality:
Personal data shall be processed securely, protecting it from unauthorized access, loss, or damage through appropriate technical and organizational measures.
4. Rights of Data Subjects
a. Right to Access:
Individuals have the right to access their personal data and information about its processing.
b. Right to Rectification:
Individuals can request correction of inaccurate or incomplete personal data.
c. Right to Erasure:
Under specific circumstances, individuals can request the deletion of their personal data.
d. Right to Data Portability:
Individuals can obtain and reuse their personal data across different services.
e. Right to Object:
Individuals can object to the processing of their personal data in certain scenarios.
f. Rights Related to Automated Decision Making and Profiling:
Individuals have the right to avoid decisions made solely based on automated processing, including profiling, that significantly affects them.
5. Data Security
Betalight B.V. will ensure appropriate technical and organizational measures are in place to maintain security, including:
- Pseudonymisation and encryption of personal data.
- Measures to ensure ongoing confidentiality, integrity, and availability of processing systems.
- The ability to restore access to personal data quickly in the event of a breach.
- Regular testing and evaluation of security measures.
6. Data Protection Officer
Betalight B.V. will appoint a Data Protection Officer (DPO) responsible for ensuring compliance with this policy and GDPR requirements.
7. Data Breach Notification
Betalight B.V. will promptly notify the relevant supervisory authority and affected individuals of any personal data breaches.
8. Data Protection Impact Assessments
Betalight B.V. will conduct Data Protection Impact Assessments (DPIAs) for processing activities that may pose high risks to individuals’ rights and freedoms.
9. International Data Transfers
Any personal data transfers outside the European Economic Area (EEA) will comply with GDPR requirements.
10. Training and Awareness
All staff involved in processing personal data will receive training on GDPR requirements to ensure compliance and awareness.
11. Policy Review
This policy will be reviewed and updated regularly to reflect changes in applicable laws and GDPR requirements.
12. Contact Information
For questions or concerns regarding this GDPR Policy or the processing of personal data by Betalight B.V., please contact us at info@betalight-tactical.com.
This GDPR Policy is effective as of the date first written and will be communicated to all relevant stakeholders within Betalight B.V.