1. Introduction
This policy outlines how TRANSFERFORCE LTD processes, stores, and protects personal data in accordance with data protection laws such as the GDPR (General Data Protection Regulation) and other applicable legislation.
2. Purpose
The purpose of this policy is to:
• Ensure compliance with data protection laws.
• Protect the personal data of employees, customers, and other stakeholders.
• Maintain confidentiality and security of data.
• Specify the rights and responsibilities of individuals and employees regarding data protection.
3. Scope
This policy applies to all personal data processed by TRANSFERFORCE LTD, regardless of how it is collected, stored, or used. This includes both digital and physical data.
4. Data Collection
TRANSFERFORCE LTD collects personal data for legitimate business purposes, including:
• Employee records.
• Customer information.
• Supplier and business partner data.
• Other data necessary for the provision of services.
5. Types of Personal Data Collected
• Name
• Address
• Contact details (email, phone number)
• Date of birth
• Financial details (where relevant)
• Employment history
• Any other relevant personal details
6. Data Usage
Personal data is used for the following purposes:
• To fulfill contractual obligations.
• To communicate with individuals.
• To comply with legal obligations.
• To improve business operations and services.
7. Data Storage and Security
All personal data will be stored securely, both digitally and physically, in compliance with data protection laws. Measures include:
• Encrypted storage.
• Access control procedures.
• Secure disposal of outdated data.
8. Data Retention
Personal data will only be retained for as long as necessary to fulfill the purposes for which it was collected or as required by law. When data is no longer needed, it will be securely deleted or anonymized.
9. Rights of Data Subjects
Individuals have the following rights regarding their personal data:
• The right to access their data.
• The right to rectify inaccuracies.
• The right to erasure (right to be forgotten).
• The right to restrict processing.
• The right to data portability.
• The right to object to processing.
Requests related to these rights should be directed to TRANSFERFORCE LTD via [email protected].
10. Data Sharing and Third Parties
Personal data may be shared with third-party service providers who assist with business operations, provided they comply with data protection regulations. No personal data will be sold or transferred to unauthorized parties.
11. Training and Awareness
Employees will be trained on data protection principles, policies, and their responsibilities to ensure that personal data is handled appropriately.
12. Data Breach Procedures
In the event of a data breach, TRANSFERFORCE LTD will:
• Notify the relevant supervisory authority within 72 hours.
• Inform affected individuals when necessary.
• Take steps to mitigate the impact of the breach.
13. Review and Updates
This Data Protection Policy will be reviewed regularly to ensure compliance with the latest data protection regulations. Any changes to this policy will be communicated to employees and relevant stakeholders.