GDPR Commitment Policy
Alecta Limited is committed to protecting the privacy and security of personal data in accordance with the EU General Data Protection Regulation (GDPR). We believe that data protection is a fundamental right and we are committed to complying with GDPR regulations.
Data Collection and Processing
We only collect and process personal data when we have a legitimate business need to do so. We will always be transparent about what data we collect, how we collect it, and why we collect it. We will also inform individuals about their rights regarding their personal data and ensure that their data is protected.
Data Accuracy and Retention
We will take all reasonable steps to ensure that the personal data we collect is accurate and up-to-date. We will also ensure that personal data is only retained for as long as necessary to fulfil the purpose for which it was collected.
We will take appropriate technical and organisational measures to protect personal data from unauthorised access, accidental loss, destruction, or damage. We will also ensure that all our employees and third-party processors who have access to personal data are trained in data protection and are aware of their responsibilities.
Data Subject Rights
We respect the rights of individuals regarding their personal data and will respond promptly to any requests to access, rectify, or delete personal data. We will also ensure that any data breaches are reported to the relevant authorities within the required timeframe.
Data Sharing and Processing
We will only share personal data with third parties when we have a legitimate business need to do so and have obtained appropriate consent from the individuals concerned. We will ensure that any third-party processors comply with GDPR regulations and take appropriate measures to protect personal data.
We are committed to continuous improvement of our data protection practices and will regularly review our policies and procedures to ensure they comply with GDPR regulations. We will also provide ongoing training to our employees to ensure that they are aware of GDPR regulations and their responsibilities.
This policy was last updated on 29th March 2023.