We adhere to the principles of lawful basis and transparency by only gathering information that is essential.

We perform an information audit to identify the data we handle and regulate access. Our data processing activities are backed by legal justifications.

We prioritize data protection throughout our business activities, starting from the moment we collect your personal data. We employ encryption, pseudonymization, or anonymization methods wherever feasible. Our staff is consistently mindful of these practices, supported by internal data protection policies and an IT security policy. In the event of a data breach, our systematic approach to notification aligns with internal data breach reporting policies and our business continuity management program.

We have proper security procedure to handle our customers who make request about their personal data that is with us. It is easy for our customers to correct or update inaccurate or incomplete information.   We do not use automated processes to make decision about our customers.  If there is use of Artificial Intelligence/Machine Learning or use of website cookies to make decision, this is notified to our customers on the relevant company websites where such activities are taking place.