Compliance with Art. 5 GDPR Principles relating to the processing of personal data
Solar Age is fully obligated to protect your data and follow the GDPR compliance guidelines:
GDPR REQUIERMENTS
-
(a) processed lawfully, fairly, and in a transparent manner in relation to the data subject (‘lawfulness, fairness and transparency’);
-
(b) The information is collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall, in accordance with Article 89(1), not be considered to be incompatible with the initial purposes (‘purpose limitation’);
-
(c) adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed (‘data minimization’);
-
(d) accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that inaccurate personal data, having regard to the purposes for which they are processed, are erased or rectified without delay (‘accuracy’);
SOLAR AGE COMPLIANCE
(a) All information is collected after the candidates who perform the background checks have expressed their consent to it, both for the process and for the information actually collected
(b) The information collected is explicitly intended only for the purposes of conducting background checks and is fully suitable for performing the checks. No additional information is collected and stored beyond that at any stage of the inspection.
The information is also not subsequently transferred for any other use, including not for historical or statistical studies
(c) The information is limited to the clear needs of conducting the background checks, and as has already been said, the candidates sign a clear consent on the nature of the information collected
(d) The information collected about the candidates is verified and is the most up-to-date and accurate. Inaccurate or revoked information is deleted from the information systems
-
(e) kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) subject to implementation of the appropriate technical and organisational measures required by this Regulation in order to safeguard the rights and freedoms of the data subject (‘storage limitation’);
(e) The information is stored securely regarding each candidate in a separate and compartmentalized manner for as long as the information is required to perform the checks and the status of the candidate vis-à-vis and in coordination with the ordering company. Moreover, at Solar Age, we make sure that only the employees who are essential to perform the tests are exposed to the personal information of candidates, and our systems allow monitoring and monitoring in a casual manner any use of the information for the purposes of the checks.
-
(f) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures (‘integrity and confidentiality’).
(f) The information is processed securely and protected by several layers of information security and physical security against unwanted intrusion into the information systems. In order to avoid loss of information, the processing is carried out only on protected computers and not through mobile devices. After the termination of employees, immediately, their access to the information is blocked. Any suspected adverse event is immediately reported and investigated.