The Personal Data Protection Policy covers the way in which the Company, processes personal information.
It requires our leaders to ensure that personal data protection practices are appropriately managed within their business, so that personal information is processed in accordance with requirements of applicable law, and where applicable, relevant contractual obligations.
The policy includes requirements relating to:-
- the need to implement local Personal Data Protection Policies where local laws differ materially from the Group policy;
- the collection and processing of Personal Information;
- retention of Personal Information;
- sharing and disclosure of Personal Information;
- rights of individuals;
- international transfers of personal information; and
- management of incidents.
The requirements of the policy apply regardless of whether the personal information belongs to the Company, its customers or third parties.
