DATA PROTECTION POLICY
The governing body at Aligfra Digital Canarias, S.L. (hereinafter, the controller) assumes maximum liability and commitment with the establishment, implementation and maintenance of the present Data Protection Policy, guaranteeing the constant improvement from the controller to reach excellence in relation with the compliance of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJEU L 119/1, 04-05-2016) (hereinafter, the GPDR) provides a modern framework based on the accountability for data protection in Europe.
The Data Protection Policy in Aligfra Digital Canarias, S.L. rests on the Principle of Proactive Responsibility. This principle states that the controller is responsible for the compliance of the legal and jurisprudential framework governing this Policy and is capable to demonstrate it to the corresponding control authorities.
The controller will be ruled by the following principles which must serve as a guide and framework to all its members when it comes to handle with personal data:
Design Data Protection: the controller will apply both when determining the means to control as well as in the precise moment of control, adequate technical and organisational measures such as the pseuodymisation conceived to apply in an effective way the principles of data protection such as the data minimization or integrate the necessary guarantees during control.
Default Data Protection: the controller will apply both when determining the means to control as well as in the precise moment of control, adequate technical and organisational measures such as the pseuodymisation conceived to apply in an effective way the principles of data protection such as the data minimization or integrate the necessary guarantees during control.
Data Protection during the life cycle of the information: the measures that guarantee personal data protection will be applied during the life cycle of the information.
Legality, loyalty and transparency: personal data will be treated in a legal, loyal and transparent way in relation with the recipient.
Limitation of purpose: personal data will be collected for specific, explicit and legitimate purposes and they will not be treated utterly in an incompatible way with those purposes.
Data minimization: personal data will be adequate, relevant and limited to what would be considered necessary for the purposes of use.
Accuracy: personal data will be accurate and, if necessary, updated. All the reasonable measures to remove or modify them all the incorrect data will be taken without any delay.
Storage period limited: all personal data will be stored during the time enough so they can be identified but not longer than necessary.
Integrity and confidentiality: personal data will be treated so their adequate safety can be guaranteed, including the protection against the unauthorized use and against loss, destruction or accidental damage applying the corresponding technical or organizational measures.
Training and information: one of the key points to guarantee the protection of personal data is to train and inform the staff working with these data. During the life cycle of the information, all members with access to the information will be properly trained and informed on their obligations in order to comply with data protection regulations.
The Data Protection Policy in Aligfra Digital Canarias, S.L. has been communicated to all the staff working for the controller and making it available to all the interested parties.
As a consequence, this present Data Protection Policy involves all the staff working for the controller. All of the members must know it and assume it, considering it as their own. Each member is responsible to apply and verify those regulations applicable to their activities. They are also responsible to identify and suggest those opportunities to improve this policy with the purpose of reaching the excellence in compliance with the regulations.