GDPR Compliance

Last updated: March 2024

1. Introduction

This GDPR Compliance Statement explains how we comply with the General Data Protection Regulation (GDPR) in our vehicle transport management platform.

2. Data Protection Principles

We adhere to the following GDPR principles:

  • Lawfulness, fairness, and transparency
  • Purpose limitation
  • Data minimization
  • Accuracy
  • Storage limitation
  • Integrity and confidentiality
  • Accountability

We process personal data under the following legal bases:

  • Marketing communications
  • Optional features and services
  • Cookie preferences

3.2 Contractual Necessity

  • Account management
  • Service provision
  • Payment processing
  • Tax and financial records
  • Transport compliance documentation
  • Employment records

3.4 Legitimate Interests

  • Service improvement
  • Security measures
  • Business analytics

4. Data Subject Rights

Under GDPR, you have the following rights:

  1. Right to be informed
  2. Right of access
  3. Right to rectification
  4. Right to erasure
  5. Right to restrict processing
  6. Right to data portability
  7. Right to object
  8. Rights related to automated decision making

5. Data Protection Measures

We implement appropriate technical and organizational measures:

5.1 Technical Measures

  • Encryption at rest and in transit
  • Access controls and authentication
  • Regular security testing
  • Backup and disaster recovery

5.2 Organizational Measures

  • Staff training
  • Data protection policies
  • Regular audits
  • Incident response procedures

6. International Data Transfers

We ensure appropriate safeguards for data transfers outside the EEA through:

  • Standard Contractual Clauses
  • Adequacy decisions
  • Binding Corporate Rules
  • Privacy Shield (where applicable)

7. Data Protection Officer

Our Data Protection Officer can be contacted at:

Email: contact@quinetik.com

8. Data Breach Procedures

We maintain procedures for:

  • Detecting breaches
  • Assessing risks
  • Notifying authorities
  • Informing affected individuals

9. Updates to This Statement

We regularly review and update this statement to reflect:

  • Regulatory changes
  • New guidance
  • Best practices
  • Service changes

10. Contact Information

For GDPR-related inquiries:

Email: privacy@yourdomain.com Phone: [Your Phone Number] Address: [Your Company Address]