Lawfulness, Fairness, and Transparency: Personal data will be collected and processed lawfully, fairly, and transparently in accordance with applicable data protection laws and regulations.
Purpose Limitation: Personal data will be collected for specified, explicit, and legitimate purposes and will not be further processed in a manner incompatible with those purposes.
Data Minimization: Only personal data that is necessary for the intended purpose will be collected and processed.
Accuracy: Reasonable steps will be taken to ensure the accuracy of personal data and to rectify or erase inaccurate or outdated data without delay.
Storage Limitation: Personal data will be stored for no longer than is necessary for the purposes for which it was collected.
Data Security
Storage Limitation: Personal data will be stored for no longer than is necessary for the purposes for which it was collected.
Confidentiality: Personal and sensitive data will be treated as confidential and will be protected against unauthorized access, disclosure, alteration, or destruction.
Access Control: Access to personal data will be restricted to authorized individuals on a need-to-know basis.
Encryption: Personal data will be encrypted when stored or transmitted electronically, where appropriate.
Data Breach Response: Procedures will be in place to detect, report, and respond to data breaches in a timely manner.