Software is our passion. Our team has years of experience in software development. Are you dealing with a business problem that can be solved with a technological solution? Then we would like to be your partner!
Privacy Policy
Last updated: July 2021
Cesbit uses personal data from customers, employees and partners. Personal data is mainly collected during the execution of management, project and security services.
Customers must be able to rely on Cesbit to handle personal data with care and security. Cesbit is aware that with the arrival of new technological developments and innovative facilities, the privacy of customers must also be guaranteed, for example through measures in the field of information security, data minimization, transparency and user control.
The board and management play a crucial role in guaranteeing privacy.
Cesbit gives a clear direction to privacy through this policy and shows that it guarantees, protects and enforces privacy. This policy applies to the entire organization, all processes, components, objects and data collections of Cesbit. This privacy policy of Cesbit is in line with the general policy of national and European laws and regulations.
Legal frameworks for handling data
Cesbit is responsible for drafting, implementing and enforcing the policy. Among other things, the following legal frameworks apply:
- General Data Protection Regulation (AVG).
- Implementing Act General Data Protection Regulation.
Starting points
Cesbit handles personal data securely and respects the privacy of those involved. Cesbit adheres to the following principles:
Lawfulness, decentness, transparencyPersonal data is processed in accordance with the law and in a proper and careful manner.
Basis and goal retentionCesbit ensures that personal data is only collected and processed for specific, explicitly described and justified purposes. Personal data is only processed with a fair basis.
Data minimizationCesbit only processes the personal data that is at least necessary for the predetermined purpose. Cesbit strives for minimal data processing. Where possible, less or no personal data is processed.
Retention periodPersonal data is not stored any longer than necessary. The retention of personal data may be necessary to properly perform the duties of Cesbit or to be able to comply with legal obligations.
Integrity and confidentialityCesbit handles personal data with care and treats it confidentially. For example, personal data is only processed by persons with an obligation of confidentiality and for the purpose for which this data was collected. Cesbit also ensures appropriate protection of personal data. This security is laid down in the Cesbit information security policy.
Share with third partiesIn the case of cooperation with external parties, where data processing of personal data is involved, Cesbit makes agreements about the requirements that data exchange must meet. These agreements comply with the law. Cesbit checks these agreements annually.
SubsidiarityIn order to achieve the purpose for which the personal data are processed, infringement of the privacy of the citizen concerned is limited as much as possible.
ProportionalityThe infringement of the data subject's interests may not be disproportionate in relation to the purpose to be served.
Rights of data subjectsCesbit honors all rights of those involved.
This privacy policy comes into effect after adoption by the board of Cesbit. The policy is evaluated every 3 years and revised if necessary.