PERSONAL DATA PROTECTION ON PRECIA MOLEN’S WEBSITE
At PRECIA MOLEN your privacy is important; as such, we have taken the necessary precautions to comply with the GDPR (General Data Protection Regulation).
What data we collect and how we use and maintain it is explained hereby :
1. What data do we collect?
When you visit the pages of our website, we record the following information that your browser sends to our servers :
• anonymised IP address
• request date and time
• time difference from GMT (Greenwich Mean Time)
• request content (pages viewed)
• access status/ HTTP status code
• digital port number
• amount of data transferred
• the web page from which you access our web pages
• operating system
• installed version and the language set on your operating system.
The following data will be processed if you choose to contact us via the contact form:
• full name
• email address
• telephone number
• city and postcode
• country of residence
We use this information for technical reasons to respond to your requests and ensure website functionality and stability.
If you subscribe to the PRECIA MOLEN newsletter by entering your email address, you will receive emails from PRECIA MOLEN informing you of any major changes to new PRECIA MOLEN products and services.
2. What do we use this information for?
Any information collected by us may be used for one or more of the following purposes:
• personalise your experience and better meet your individual needs;
• improve our website;
• PRECIA MOLEN continually strives to improve its website’s offering based on information and feedback received from its customers;
• secure your connection to the service manager on preciamolen.com;
• establish a primary communication channel with you;
• generate cookie statements and present them to End Users and save and display scan reports for you;
• periodically send emails. the e-mail address you provide via the contact form may be used to send you news about our company (updates, information on the Service or products, etc.).
If at any time, you decide to unsubscribe from our mailing list, you may do so by clicking on the unsubscribe button at the bottom of the email.
3. How do we protect your data?
PRECIA MOLEN applies the following technical, physical, and organisational measures to protect your personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorised use, modification, disclosure or unauthorised access, and against any other form of unlawful processing.
The Service uses the extended capabilities of the IT environment to ensure high availability as well as full redundancy, load balancing, automatic capacity adjustment, continuous data backup, and geo-replication in addition to a traffic manager for automatic geographic failover in the event of a data center disaster. All failover mechanisms are fully automated.
No personal data is permanently stored outside PRECIA MOLEN’s computer system. Physical security is thus maintained with PRECIA MOLEN’s subcontractors.
To ensure their integrity, all data flows are encrypted in accordance with good data confidentiality and integrity practices. For data transfers, the service uses transport protocols that are compliant with industry standards between devices and Microsoft data centers and within the data centers themselves.
All of our employees are required to maintain strict confidentiality and all our subcontractors are required to sign a non-disclosure agreement where complete confidentiality is not included in the main agreement between the parties.
When personal data is to be handled by authorised personnel, access to it is only possible through an encrypted connection. When accessing data in a database, the IP address of the person accessing the data must receive prior access authorisation.
Any device used to access personal data is protected by login through PRECIA MOLEN’s Azure Active Directory (AAD), a Microsoft Access and Identity Management Service, and PRECIA MOLEN’s business antivirus solution is installed on it. When personal data is temporarily stored on a device, the device’s storage unit strongly encrypted.
Devices that temporarily record personal data in our facilities are, at all times, except when not actively used or moved under constant surveillance, locked in a safe. Personal data is never recorded on mobile media, such as external hard drives, USB drives, or DVDs.
PRECIA MOLEN will keep you informed, at all times, of changes in our procedure for protecting data security and confidentiality, including our practices and our policy. You may request information, at any time, about where and how your data is stored, protected, and used. PRECIA MOLEN will also provide you with reports on any independent audit of our Service.
All access to personal data is blocked by default by means of a zero-privilege policy. Access to personal data is restricted to individually authorised employees. Authorisations are granted by PRECIA MOLEN’s Security and Confidentiality Manager who also manages an archive of the authorisations granted. Authorised employees are granted minimum access on a case-by-case basis through our AAD.
PRECIA MOLEN guarantees your right to access, rectify, delete, block, and object to use of your personal data by providing built-in data processing functions within the Service Manager, by offering the possibility of sending instructions via PRECIA MOLEN’s support centre, and by informing you when PRECIA MOLEN plans to change its practices and policy and offering you the opportunity to object to such changes.
PRECIA MOLEN’s Data Protection Officer is responsible for overall data security, and they train and inform employees on all security measures.
Monitoring and traceability
PRECIA MOLEN uses security reporting to monitor access plans and to proactively identify and mitigate potential threats. Administrative operations, including access to the system, are archived to provide an audit trail in the event of unauthorised or accidental changes.
System performance and availability are monitored by internal and external monitoring services.
Warning in case of a personal data breach
If your data is in danger, PRECIA MOLEN will notify you by email and the relevant supervisory authorities within 72 hours. This email will contain information on the level of intrusion, the data concerned, and the impact on the Service as well as PRECIA MOLEN’s action plan and measures to secure the data and limit potential adverse effects on data subjects.
A personal data breach means a security breach resulting in the destruction, loss, alteration, or accidental, unlawful, or unauthorised disclosure of personal data transmitted, stored, or processed in any manner in connection with the provision of this Service, or any unauthorised access to such data.
4. Do we disclose data to outside parties?
PRECIA MOLEN does not sell, exchange, or otherwise transfer any personally identifiable information to outside parties.
This does not include third parties or subcontractors contributing to the operation of our website, our business, and our services. These third parties may have access to personally identifiable information on a case-by-case basis and will be contractually bound to keeping your data confidential.
Subcontractors / trusted third parties
The subcontractors ( RnD) are regularly audited on GDPR compliance.
PRECIA MOLEN will monitor the adherence of its subcontractors to these standards and audits to ensure that data protection requirements are met.
You will be informed of any planned changes regarding the addition or replacement of subcontractors working on personal data at least three months in advance. You may, at all times, oppose such changes or terminate your contract with PRECIA MOLEN.
Legally required disclosure
PRECIA MOLEN will not disclose customer data to the authorities unless we are ordered to do so by you or by law. In the event of a legal request from the authorities to obtain PRECIA MOLEN’s customer data, PRECIA MOLEN will endeavor to limit such disclosure to the strict minimum and will only publish the data specifically required by this legal request.
Should it be compelled to disclose your data, PRECIA MOLEN will promptly notify you and provide you with a copy of the order, unless this is prohibited by law.
5. Where do we store data?
No recorded data will be transferred, stored, and/or retrieved by PRECIA MOLEN outside the European Union.
All data will be stored in databases and file repositories hosted on the servers of our website hosts; this data is automatically replicated in PRECIA MOLEN’s servers in real time.
Databases are continually backed up to ensure that they can be fully restored within 35 days. The backup files are kept in a file store at the same geographic location as the database. A copy of the data is also stored in PRECIA MOLEN’s account system.
6. Support for data access, portability, migration, and re-transfer
You may ask PRECIA MOLEN to confirm whether your personal data is processed by us at any time. You may request a complete copy of the data to provide to another data controller at any time.
PRECIA MOLEN will send you an Excel file containing your personal data within ten working days. Please send us an email requesting this to: firstname.lastname@example.org
7. Your rights as a data subject
Right to rectification under Article 16 of the GDPR
You have the right to demand the immediate rectification of incorrect personal data about you from us. Taking into account the purposes of the processing, you have the right to have any incomplete personal data completed, including by means of providing a supplementary statement.
You may ask PRECIA MOLEN, at any time, to restrict the processing of personal data when one of the following conditions applies:
- if you contest the accuracy of the personal data, for a period allowing PRECIA MOLEN to verify the accuracy of the personal data;
- if the processing is unlawful and you oppose the erasure of the personal data and you prefer to restrict its use instead; or
- if PRECIA MOLEN no longer needs the personal data for the purposes of the processing, but you require it for the establishment, exercise, or defence of legal claims.
Right to erasure under Article 17 of the GDPR
You have the right to demand the immediate erasure of your personal data where one of the following grounds applies.
You may request the erasure of your personal data, and PRECIA MOLEN will immediately erase such personal data when one of the following conditions applies:
- if the personal data is no longer necessary in relation to the purposes for which they were collected or otherwise processed;
- if you withdraw consent to such processing and there is no other legal ground for such processing;
- if you object to the processing if it is for direct marketing purposes;
- if the personal data has been unlawfully processed;
- if the personal data must be erased for compliance with a legal obligation in EU or national law.
Right to restriction of processing under Article 18 of the GDPR
You have the right to demand the restriction of processing by us where one of the following prerequisites is verified:
- you contest the accuracy of the personal data;
- the processing is unlawful and you demand the restriction of the use of the personal data instead of its erasure;
- the controller no longer needs the personal data for the purposes of the processing, but it is required by the data subject for the establishment, exercise or defence of legal claims;
- you objected to processing pursuant to Article 21(1) of the GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.
Right to data portability under Article 20 of the GDPR
You have the right to receive, in a structured, commonly used and machine-readable format, personal data and you have the right to transmit such data to another controller without hindrance from us, where:
the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to point (b) of Article 6(1) of the GDPR and is carried out by automated means.
When you exercise your right to data portability, you have the right to have us directly transmit the personal data to another controller, where technically feasible.
For any questions about the website or to exercise of your rights related to the processing of your data, please send an email to the data protection officer at email@example.com or write to this address:
07001 PRIVAS CEDEX
If we decide to amend this statement, we will post any changes on this page and/or update its version date.
This policy was last amended on July 5th, 2019.