GDPR Compliance
General Data Protection Regulation Compliance Statement
1. GDPR Compliance Statement
Premium Design Company is committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have always had a robust and effective data protection program in place which complies with existing law and abides by the data protection principles.
2. Our GDPR Commitments
Lawful, Fair, and Transparent Processing
We process personal data lawfully, fairly, and in a transparent manner in accordance with GDPR requirements.
Purpose Limitation
We collect personal data for specified, explicit, and legitimate purposes and do not process it further in a manner that is incompatible with those purposes.
Data Minimization
We only collect and process data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
Accuracy
We take every reasonable step to ensure that personal data is accurate and, where necessary, kept up to date.
Storage Limitation
We keep personal data in a form which permits identification of data subjects for no longer than necessary for the purposes for which the personal data is processed.
Integrity and Confidentiality
We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
3. Your Rights Under GDPR
Right to Access
You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data.
Right to Rectification
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you.
Right to Erasure (Right to be Forgotten)
You have the right to obtain the erasure of personal data concerning you without undue delay.
Right to Restrict Processing
You have the right to obtain restriction of processing where the accuracy of the personal data is contested, the processing is unlawful, or where we no longer need the personal data.
Right to Data Portability
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format.
Right to Object
You have the right to object to processing of personal data concerning you for direct marketing purposes and for scientific or historical research purposes.
4. Data Processing Activities
Legal Basis for Processing: We process personal data based on one or more of the following legal bases: consent, contract necessity, compliance with legal obligations, or legitimate interests pursued by the controller.
Data Transfers: We ensure adequate protection for international data transfers through appropriate safeguards and mechanisms as required by GDPR.
5. Security Measures
We have implemented appropriate technical and organizational security measures to ensure a level of security appropriate to the risk, including:
- Encryption of sensitive personal data in transit and at rest
- Regular security assessments and vulnerability testing
- Strict access controls and authentication mechanisms
- Comprehensive staff training on data protection principles
- Incident response and data breach procedures
- Regular data protection impact assessments
- Physical security measures for data storage facilities
6. Data Breach Procedures
We have implemented robust procedures to deal with any suspected personal data breach. In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will:
- Notify the appropriate supervisory authority without undue delay and, where feasible, not later than 72 hours after becoming aware of it
- Communicate the data breach to affected data subjects without undue delay when the breach is likely to result in a high risk to their rights and freedoms
- Document all data breaches, comprising the facts relating to the breach, its effects, and the remedial action taken
7. Contact Information
For any GDPR-related inquiries or to exercise your data protection rights, please contact us:
Email: info.premiumdesigncompany@gmail.com
Phone: +46764439468
Address: Gothenburg, Sweden
Response Time: We aim to respond to all data protection requests within 30 days as required by GDPR