Overview

datnoc is committed to ensuring compliance with the General Data Protection Regulation (GDPR) (EU Regulation 2016/679). This regulation strengthens and unifies data protection for individuals within the European Union (EU) and addresses the export of personal data outside the EU.

Our Commitment

We understand the importance of data protection and privacy. Our security services are designed with GDPR principles at their core, ensuring that personal data is processed lawfully, fairly, and transparently.

Key Principles

• Lawfulness, fairness, and transparency in data processing
• Purpose limitation - data is collected for specified purposes
• Data minimization - only necessary data is collected
• Accuracy - ensuring data is kept up to date
• Storage limitation - data is not kept longer than necessary
• Integrity and confidentiality - appropriate security measures
• Accountability - demonstrating compliance with GDPR

Your Rights

Under GDPR, you have the following rights:

• Right to access: You can request copies of your personal data
• Right to rectification: You can request correction of inaccurate data
• Right to erasure: You can request deletion of your data
• Right to restrict processing: You can request limitation of data processing
• Right to data portability: You can request transfer of your data
• Right to object: You can object to processing of your data
• Rights related to automated decision-making: Including profiling

Data Processing

We process personal data only for legitimate business purposes, including:

• Providing security services and consultations
• Responding to inquiries and support requests
• Legal compliance and regulatory requirements
• Improving our services and website functionality
• Marketing communications (with your consent)

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

• End-to-end encryption for data in transit and at rest
• Multi-factor authentication and access controls
• Regular security assessments and penetration testing
• Secure data centers with physical security measures
• Employee training on data protection and privacy
• Incident response procedures and breach notification protocols

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. When data is no longer needed, it is securely deleted or anonymized. Retention periods vary depending on the type of data and legal requirements.

International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, or adequacy decisions by the European Commission.

Data Breach Notification

In the event of a personal data breach that poses a high risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay, in accordance with GDPR requirements.

Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance efforts. You can contact our DPO for any questions or concerns regarding data protection at:dpo@datnoc.com

Exercising Your Rights

To exercise any of your GDPR rights, please submit a request to us. We will respond to your request within one month. In some cases, we may extend this period by up to two additional months if the request is complex. We will inform you of any such extension and the reasons for it.

You also have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data violates GDPR.

Contact Us

If you have any questions about our GDPR compliance or wish to exercise your rights, please contact us: