We are committed to operating in compliance with data laws globally across its various divisions.
The EU General Data Protection Regulation (“GDPR”) requires us to meet principles of fairness, accountability and transparency in handling personal data. Normstahl has a focused, structural and systemic approach to data protection and privacy. Our globally applicable Normstahl Data Protection Compliance Program has been developed to protect the integrity of the personal data of our employees, customers and partners worldwide. Normstahl has dedicated resources across the Group whose continual focus is the compliance with data laws globally including the GDPR.
We keep personal data secure using equipment operating in accordance with recognized security standards. In cases where the rights of individuals are at risk, we conduct impact assessments in accordance with our standard methodology. We recognize that data laws are continuously evolving. Normstahl has invested considerable resources in raising awareness and rolling out training in relation to its Data Protection Compliance Program. We continuously monitor data protection developments to ensure our policies, processes and procedures are relevant and adequate. We are committed to ensuring good data governance and are invested in data trust and security for the long-term.
To find out more please view the European Union’s official GDPR statements.
In short - All information that is specific to a particular, identifiable person is personal information. A person is identifiable when they can be identified directly or indirectly. For instance this may happen by matching your name with GPS location data or an online IP address.