At KPI Global Management Limited, we are committed to protecting the privacy and confidentiality of personal data entrusted to us by our clients, employees, suppliers, and other stakeholders. We adhere to applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR), to ensure that personal data is processed lawfully, securely, and transparently.
Our Policy
Data Protection Principles: We adhere to the core principles of data protection, including the lawful, fair, and transparent processing of personal data, purpose limitation, data minimization, accuracy, storage limitation, integrity, and confidentiality.
Lawful Basis for Processing: We ensure that personal data is collected and processed based on a valid lawful basis, such as consent, contractual necessity, legal obligation, vital interests, or legitimate interests.
Data Subject Rights: We respect the rights of data subjects and provide mechanisms for individuals to exercise their rights, including the right to access, rectify, erase, restrict processing, object, and data portability.
Data Security: We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or destruction. These measures include secure data storage, access controls, encryption, and regular data backups.
Data Sharing and Transfers: We only share personal data with third parties when necessary and with appropriate safeguards in place. International data transfers are conducted in accordance with applicable data protection laws and regulations.
Data Retention: We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by legal or regulatory obligations. We have defined retention periods and regularly review and delete personal data that is no longer needed.
Data Breach Management: In the event of a data breach, we have established procedures to detect, assess, and respond to breaches in a timely manner. We notify relevant authorities and affected individuals as required by applicable laws and regulations.
Compliance Monitoring and Training: We regularly assess our data protection practices and provide training to our employees to ensure ongoing compliance with data protection laws and regulations.
Third-Party Compliance: We engage with third-party service providers and suppliers who demonstrate compliance with applicable data protection standards and regulations.
We are committed to continuous improvement and maintaining the highest standards of data protection and compliance. Our Data Protection and Compliance Policy is regularly reviewed and updated to reflect changes in applicable laws and regulations and evolving best practices.
This Data Protection and Compliance Policy was last updated on 21/06/2023.
Our Policy
Data Protection Principles: We adhere to the core principles of data protection, including the lawful, fair, and transparent processing of personal data, purpose limitation, data minimization, accuracy, storage limitation, integrity, and confidentiality.
Lawful Basis for Processing: We ensure that personal data is collected and processed based on a valid lawful basis, such as consent, contractual necessity, legal obligation, vital interests, or legitimate interests.
Data Subject Rights: We respect the rights of data subjects and provide mechanisms for individuals to exercise their rights, including the right to access, rectify, erase, restrict processing, object, and data portability.
Data Security: We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or destruction. These measures include secure data storage, access controls, encryption, and regular data backups.
Data Sharing and Transfers: We only share personal data with third parties when necessary and with appropriate safeguards in place. International data transfers are conducted in accordance with applicable data protection laws and regulations.
Data Retention: We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by legal or regulatory obligations. We have defined retention periods and regularly review and delete personal data that is no longer needed.
Data Breach Management: In the event of a data breach, we have established procedures to detect, assess, and respond to breaches in a timely manner. We notify relevant authorities and affected individuals as required by applicable laws and regulations.
Compliance Monitoring and Training: We regularly assess our data protection practices and provide training to our employees to ensure ongoing compliance with data protection laws and regulations.
Third-Party Compliance: We engage with third-party service providers and suppliers who demonstrate compliance with applicable data protection standards and regulations.
We are committed to continuous improvement and maintaining the highest standards of data protection and compliance. Our Data Protection and Compliance Policy is regularly reviewed and updated to reflect changes in applicable laws and regulations and evolving best practices.
This Data Protection and Compliance Policy was last updated on 21/06/2023.
Our Clients
Get in Touch
Reach out to our Experts for tailored solutions
