Click "Create Document" button and the document will be prepared with your account details automatically filled in.
Please fill in any additional information by following the step-by-step guide on the left hand side of the preview document and click the "Next" button.
When you are done, click the "Get Document" button and you can download the document in Word or PDF format.
Please review the document carefully and make any final modifications to ensure that the details are correct before publication / distribution.
This document is a privacy policy/ personal data protection policy of a company that acknowledges privacy as a fundamental right of an individual, and it's committed to protecting the information of employees, customers, clients, and all relevant parties. The policy's purpose is to set out policies and procedures for protecting the privacy of employees, customers, and clients and to provide guidance to employees to ensure that all information to which they have access to in the course of their work is collected, handled, and stored safely. The policy applies to all levels of employees who are currently under a fixed-term contract, permanent contract, part-time contract, interns, and casual workers, subject to eligibility as stated below.
The policy outlines the general principles, procedures, and data subjects' rights. The company will process personal data only with the purpose or a reasonably related purpose for which they were collected, and such data will be accurate and up-to-date. Personal data must be processed for legal and reasonable purposes, including the legitimate business and operational interests of the company and compliance with legal obligations.
The company will document records of processing and will not retain personal data for a period longer than necessary unless necessary to comply with legal or regulatory obligations. Data subjects have the right to access their data, correct any incorrect or misleading data, and request their data to be erased from the company's database. The company will perform its best endeavors to protect the confidentiality and security of personal data and extend such a duty to all interactions with third parties such as employees. The company will share personal data with its corporate affiliates only after complying with all procedures, and the company will obtain consent from data subjects before processing any data, and such consent will be provided orally, in writing, or electronically to reduce potential disputes. Data subjects have the right to withdraw their consent by giving legal and reasonable notice to the company. The company will organize regular training to ensure all employees have sufficient knowledge about this policy and the correct procedure for processing personal data.
1. Read the General Purpose section: The purpose of this document is to outline the policies and procedures implemented by the company to protect the privacy of employees, customers, and clients.
2. Understand the Interpretation section: This section defines terms that are used throughout the document, such as Data Controller, Data Processors, Data Subjects, and Personal Data.
3. Read the Company's Procedures section: This section outlines the general principles the company adheres to in order to protect personal data, such as only processing data for legitimate purposes and obtaining consent from data subjects. It also explains the procedures that the company follows in case of obtaining data subjects’ consent, and how to exercise the rights granted to data subjects under GDPR.
4. Take note of the Confidentiality and Security section: This section outlines the company's commitment to protecting the confidentiality and security of personal data.
5. Review the entire document: Make sure you understand all the policies and procedures outlined in the document.
6. Attend regular training: All employees should attend regular training sessions to ensure they have sufficient knowledge about the policies and procedures outlined in the document.
7. Exercise your rights as a data subject: If you are a data subject, you have the right to access, correct, and erase your personal data. You can exercise these rights by giving legal and reasonable notice to the company.
By following these steps, you can better understand how to use this document and ensure that you are in compliance with the company's policies and procedures for protecting personal data.