This document defines the needs and purposes regarding the processing of personal data, the risks involved and the measures aimed at reducing these risks. Appoint a data protection officer. This is a person inside or outside the company who oversees data management and ensures compliance with the company's internal regulations. This is mandatory for some companies based on standards defined by regulations. Data management notices Every operation involving the use of natural person data must obtain the informed consent of the user, and the method and purpose of processing.
Their information must be communicated to the Latest Mailing Database user in a clear and understandable manner. And that's not all: consent can be withdrawn at any time. Any changes to the communicated content must be subject to further approval by the user. Your rights also include: Obtain a copy of the data held by the company; the right to be forgotten, i.e. deletion of your data by the company and third parties; encryption of data held by the company. What to do about a breach: Data controllers must notify the data protection authority of any breach that puts the rights of individuals at risk within hour and, in the event of a high-risk breach, notify all affected individuals as soon as possible.
Communications must specify the nature, potential consequences and remedial actions taken by the company. What is the penalty Penalties for non-compliance are severe: up to million euros for all companies with a turnover of up to million euros, and up to million euros for all other companies with a global turnover. If you need advice on data management, please contact us. We can provide you with the necessary support to prepare your databases, forms and website according to. Silvia Pagano Digital Marketer, even though my first love is writing.