DATA PROTECTION

DATA PROTECTION

NOTICE

The General Data Protection Regulation (GDPR) is a regulation of the European Union and, as of May 25, 2018, applies to all organizations that collect and process personal data of EU citizens.

As a responsible and forward-looking organization, CEMS EPC SA recognizes the need to comply with the GDPR Regulation and ensures that effective measures are in place to protect the personal data of our customers, employees and other stakeholders.

The commitment to the security of personal data extends to all the organizations in the group: AUTOMATICA SA, CEMS TEHNOLOGII SRL, BARTEC SAFETY ENGINEERING SRL, and will be demonstrated through the relevant policies and by providing adequate resources for establishing and developing effective controls on personal data protection and information security.

A security policy for the processing of personal data is available in both written and electronic format and will be communicated within the organization and interested third parties.

We will also ensure that a systematic review of the performance of the compliance program is carried out constantly to ensure that its objectives are met and that the main problems are identified and remedied.

Where necessary, an impact analysis will be used on the protection of personal data, which is in line with the requirements and recommendations of the GDPR.

Risk management is implemented at several levels of the organization, including:

• Identification and analysis of the risks regarding the processing of the personal data we collect and process
• Regular analysis of the information security risk in specific operational areas
• Risk analysis as part of process management change

For any information regarding the processing of personal data, we assure you of the full availability of the person designated as Data Protection Officer, Mrs. Veronica Oprea who can be contacted by e-mail veronica.oprea@galexconsulting.ro or by telephone on (004) 0744300969.