- Policy statement
- At Seismic Group, we are committed to protecting the privacy and confidentiality of personal information entrusted by our employees, customers, suppliers, and other stakeholders. We recognise the importance of data protection and privacy and strive to comply with all applicable laws and regulations governing the collection, use, disclosure, and storage of personal data.
- This policy statement outlines our commitment to data protection and privacy and the measures we take to safeguard personal information.
- Scope
- This policy applies to all employees, contractors, and third parties who have access to personal information held by Seismic Group in any format or location.
- Collection and use of Personal Information
- We will only collect and use personal information for legitimate business purposes with the consent of the individual or as otherwise permitted by law.
- Personal information will only be collected to the extent necessary for the specified purposes and will be kept accurate, complete, and up to date.
- We will ensure that individuals are aware of the purposes for which their personal information is collected and used.
- We will ensure that individuals are aware of the purposes for which their personal information is collected and used.
- Data Security and Confidentiality
- We will implement and maintain appropriate technical, physical, and administrative measures to protect personal information from unauthorised access, disclosure, alteration or destruction.
- Access to personal information will be restricted to authorised personnel on a need-to-know basis.
- Company systems and data will be regularly monitored and audited to detect and prevent security breaches.
- Third Parties
- Personal information shared with third parties will be subjected to appropriate contractual protections to ensure compliance with data protection and privacy regulations.
- We will only work with reputable third parties who demonstrate a commitment to data protection.
- Data Breach
- In the event of a data breach, we will promptly assess the situation, take necessary actions to mitigate the risk and harm and notify affected individuals and regulatory authorities as required by applicable laws and regulations.
- Data Subject Rights
- We will respect the rights of individuals regarding their personal information, including the right to access, correct, delete, and restrict the processing of their data.
- Individuals have the right to withdraw consent at any time, where applicable.
- Compliance and Accountability
- We will review and update our data protection and privacy practices periodically to ensure ongoing laws and regulations.
- An appointed individual or department will be responsible for overseeing data protection and privacy practices and handling related inquiries, complaints and requests.
This Data Protection and Privacy Policy Statement will be communicated to all relevant stakeholders and made available on our website.