General Data Protection Regulation
Steora is committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection.
We have created this policy to ensure we meet the demands of the General Data Protection Regulation (GDPR) and to demonstrate our understanding of the regulation and our data privacy practices.
The Right to Access: You have the right to request copies of your personal data.
The Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
The Right to Erasure: You have the right to request that we erase your personal data, under certain conditions (also known as the 'Right to be Forgotten').
The Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
We adhere to the principles relating to processing of personal data set out in the GDPR which require personal data to be:
Processed lawfully, fairly and in a transparent manner. Collected for specified, explicit and legitimate purposes. Adequate, relevant and limited to what is necessary. Accurate and, where necessary, kept up to date.
Steora operates globally. If we transfer personal data outside of the European Economic Area (EEA), we ensure a similar degree of protection is afforded to it by ensuring at least one of the specific safeguards approved by the European Commission is implemented.
To exercise your data rights, please contact our Data Protection Officer at dpo@steorasystems.com.