On May 25, 2018, all companies and organisations that store and process personal data of European citizens must meet the General Data Protection Regulation (GDPR).
ERP Compass makes an effort to safeguard your privacy. In this document, we inform you on the steps we have taken to meet the GDPR requirements. Should you have any questions or comments regarding this matter, please feel free to contact us at email@example.com or +31 299-200310.
What we mean by personal data
We would first like to clarify what is meant with ‘personal data’. This is data that can be connected to an individual or that can be used to identify an individual. Think of such things as your name, telephone number, e-mail address etc. General company data does not fall in this category unless you are a freelancer.
Collection and processing of personsal data and data minimization
As part of data minimization, ERP Compass will exclusively collect, store and process personal data that is strictly necessary for performing our service. ERP Compass only collects personal data that is publicly available or that is provided to us by those stakeholders themselves.
Sharing personal data with third parties
ERP Compass never shares data with third parties without your explicit consent. After you have ordered us to get you in touch with software suppliers, we send you an e-mail describing clearly what the process is and how your data will be used.
In this e-mail, we repeat that you have given your permission for sharing your data with third parties. Should you still have any objection to this, then the e-mail explains how you can contact us to reverse this decision. We will then immediately stop sharing your data and indicate that the already shared data may no longer be used and should be deleted.
Appointment data protection officer
For the handling of questions, requests and complaints regarding privacy, ERP Compass has appointed a Data Protection Officer (DPO). This DPO endeavours to react as quickly, clearly and complete as possible to privacy-related questions and requests. If you have any questions, you can contact the DPO at the e-mail address firstname.lastname@example.org or at +31 299-200310
Access to personal data
The internal processes of ERP Compass have been designed in such a way that employees are only given access to personal data on a need-to-know basis. This means that personal data is only available to employees if this data is necessary for performing their activities.
Services and suppliers
ERP Compass has made agreements with the software suppliers about the manner in which they use your personal data. The software suppliers have declared to meet the requirements of the General Data Protection Regulation (GDPR). This also applies to parties that supply services to ERP Compass
Right to access, correction, deletion and data portability
You have the right to gain access to your personal data. On demand, Softwareinformation.nl will provide you with a clear overview of the personal data that is processed. You also have the right to acces to information on the way in which ERP Compass processes this data. We are happy to inform you on the processing of your data on request.
You can receive a copy of the data that is available to us. Think of the objective of the processing, with whom the data has been shared and how the data has been collected.
Additionally, you have the right to request ERP Compass to delete or correct your personal data. Personal data is standard renewed within 18 months or otherwise deleted.
You have the possibility to transfer your personal data to other parties. This also applies to depersonalised data that can still be traced back to an individual. ERP Compass provides this information on demand and in a structured and commonly used electronic open standard.