An organization that collects information about you must provide you with clear information about how your data will be used and how to exercise your rights.
Good information allows you to know how your data will be processed, how to exercise your rights and therefore decide whether or not to entrust your data to an organization.
It is the first barometer to determine the degree of trust to be given to an organization.
The European Data Protection Regulation has therefore provided for improved information for individuals and for making it easier to exercise their rights.
To facilitate this access to information, public and private organizations that place your data at the heart of their activity have a data protection officer (DPO), a privileged contact to exercise your rights or to report malfunctions.
Before collecting your data, Atlante Technologies must therefore be transparent and allow you to know :
Atlante Technologies must propose you an information notice on the protection of your data. This page must be accessible from the home page of the site of the organization under a clear heading.
This must include information on:
And in case of indirect collection by a business partner:
This step is essential if you wish to refer the matter to the regulatory authority in the event of a refusal, unsatisfactory response or lack of response.
Are you doing this by mail? Ask for an acknowledgement of receipt that will prove the date of your request.
An organization may mistakenly or negligently suffer an accidental or unlawful breach of personal data, that is, the destruction, loss, alteration or unauthorized disclosure of data about you.
The organization must report a breach to the regulatory authority within 72 hours if the breach is likely to pose a risk to your rights and freedoms. If these risks are high, the organization must also inform you as soon as possible and give you advice on how to protect your data.