GDPR applies to processing of data of EU subjects.
Definitions
Data controller means the organisation that determines the purposes for which, and the manner in which any personal data are, or are to be, processed. CPL (‘we’) is the data controller of all personal data used in our business for our own commercial purposes.
Processing of data means any set of operations performed on personal data including collection and storage, and contacting. Data means information stored electronically.
Personal data is any data that identifies an individual person, not generic company data.
Approach
In preparation for GDPR, VanHack acknowledges its responsibility to develop and maintain business-wide awareness of the rights of individuals to be empowered and protected in terms of data privacy.
VanHack implemented processes, procedures and training to ensure that a legal basis for the processing of personal data underpins all business practices at VanHack.
We recognize that there are some circumstances in which personal data may be processed and that the GDPR clarifies the responsibilities of companies as far as the processing (collection, storage, maintenance and use) of personal data is concerned.
VanHack is actively working on its strategy in relation to data protection. We will continually strive to ensure that personal data privacy is embedded as routine practice on a perpetual basis.
VanHack has undertaken to ensure that all staff receives training in the concepts and requirements of data protection law. Staff will be expected to embrace the ethos of data protection law and to adopt practices in the workplace that reflect the company’s commitment to ensuring that the rights of individuals are respected and protected at all times.