Firmana is fully compliant with the European General Data Protection Regulation (GDPR), ensuring that your personal data and privacy rights are protected according to the highest European standards, regardless of where you're located.
What is GDPR?
European Privacy Law
GDPR is a comprehensive data protection regulation that sets strict rules for how personal data must be handled.
Global Application
GDPR applies to any organization that processes personal data of EU residents, regardless of where the organization is located.
Individual Rights
GDPR grants individuals specific rights over their personal data, including access, correction, and deletion rights.
Heavy Penalties
Non-compliance can result in fines up to 4% of annual global revenue or €20 million, whichever is higher.
Your GDPR Rights
Right to Information
You have the right to know what personal data we collect, how we use it, and who we share it with. This information is provided in our Privacy Policy.
Right of Access
You can request a copy of all personal data we hold about you, including how it's being processed and stored.
Right to Rectification
You can request corrections to inaccurate or incomplete personal data we hold about you.
Right to Erasure
You can request deletion of your personal data under certain circumstances, including when it's no longer necessary for the original purpose.
Right to Data Portability
You can request your personal data in a structured, machine-readable format to transfer to another service provider.
How We Comply with GDPR
Lawful Basis
We only process personal data when we have a lawful basis, such as contract performance or legitimate interest.
Data Minimization
We collect only the minimum personal data necessary to provide our services effectively.
Purpose Limitation
Personal data is used only for the specific purposes for which it was collected and that you've been informed about.
Storage Limitation
We retain personal data only as long as necessary for the purposes for which it was collected.
Exercising Your Rights
Submit a Request
Contact our Data Protection Officer at [email protected] to exercise any of your GDPR rights.
Identity Verification
We may need to verify your identity to ensure we're only sharing your personal data with you.
Response Timeline
We'll respond to your request within one month, though complex requests may take up to three months.
No Cost
Exercising your GDPR rights is free of charge, unless requests are manifestly unfounded or excessive.
Firmana has appointed an EU representative as required by GDPR Article 27. You can contact our EU representative for any GDPR-related matters at [email protected].
We implement privacy by design principles, ensuring data protection is built into our systems and processes from the ground up, not added as an afterthought.