Get In Touch
66, Apokoronou Street, 73134, Chania, Crete, Greece.

Ph: +302821112777
Work Inquiries
Back

Security Policy


Security Policy for Inconde

Last updated: October 24, 2024

At Inconde, we prioritize the security of your personal data and take extensive measures to protect it from unauthorized access, misuse, or disclosure. This Security Policy outlines the steps we take to ensure the confidentiality, integrity, and availability of the information we collect through our website www.inconde.com.

If you have any concerns about the security of your data, please contact us at **@in*****.com .

1. Data Protection Overview

We are committed to protecting the personal data of our users in compliance with the General Data Protection Regulation (GDPR) and applicable EU laws. This includes:

  • Implementing appropriate technical and organizational measures to secure data.
  • Limiting access to personal information to authorized personnel only.
  • Regularly reviewing and updating our security practices to address new risks.

2. Technical Security Measures

We use a range of security technologies and procedures to safeguard your personal data, including:

2.1. Data Encryption

  • Encryption in Transit: We use SSL/TLS encryption to protect data transmitted between your browser and our website, ensuring that personal information is kept confidential during transmission.
  • Encryption at Rest: Sensitive data stored on our servers is encrypted to protect it from unauthorized access.

2.2. Secure Hosting

Our website is hosted on secure servers that are regularly updated and maintained to protect against vulnerabilities. These servers are located in data centers with robust physical security measures, including access control, monitoring, and environmental safeguards.

2.3. Firewalls and Intrusion Detection

We use firewalls and intrusion detection systems to monitor and block any unauthorized attempts to access our servers or systems.

2.4. Secure Software Development

We follow best practices for secure software development, ensuring that any code deployed to our website is reviewed, tested, and free from vulnerabilities that could be exploited by attackers.

3. Organizational Security Measures

In addition to technical safeguards, we implement organizational measures to ensure that our employees and contractors handle your personal data securely:

3.1. Access Control

  • We limit access to personal data to authorized personnel who need the information to perform their roles. Access rights are reviewed and adjusted based on role changes or employment status.
  • All personnel handling personal data are bound by confidentiality agreements.

3.2. Training and Awareness

  • Our staff undergoes regular security training and awareness programs to ensure they are familiar with best practices for data protection and are aware of evolving security threats.

3.3. Data Minimization and Retention

  • We collect only the necessary personal data required to provide our services and fulfill your requests.
  • Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal obligations. Upon expiration, data is securely deleted or anonymized.

4. Incident Response and Breach Notification

Despite our best efforts, no security measures are infallible. If a security incident occurs, we have an Incident Response Plan in place to quickly address and mitigate the situation.

  • Breach Identification: We continuously monitor our systems for potential security breaches or unauthorized access attempts.
  • Containment and Investigation: In the event of a security breach, we take immediate action to contain the breach, investigate its cause, and assess the extent of the data impacted.
  • Breach Notification: If the breach is likely to result in a high risk to your rights and freedoms, we will notify affected users and the relevant Data Protection Authority (DPA) within 72 hours, as required by the GDPR.

5. Third-Party Security

We work with third-party service providers to help operate our website and provide certain services. We ensure that these third parties are carefully vetted and adhere to strict data protection standards. Where applicable, we sign Data Processing Agreements (DPAs) with these third parties to ensure that they process your personal data in compliance with GDPR.

Third-party services may include:

  • Website hosting and management.
  • Email service providers for communications.
  • Analytical tools for performance monitoring.

We regularly review these providers to ensure they continue to meet our security and data protection requirements.

6. Your Responsibilities

While we do our best to protect your data, you also play a role in maintaining the security of your information. We recommend that you:

  • Use strong, unique passwords when creating accounts or subscribing to our services.
  • Regularly update your passwords and avoid sharing them with others.
  • Ensure that the devices you use to access our website are secure, using up-to-date antivirus software and security patches.

7. Data Subject Rights

Under the GDPR, you have specific rights regarding your personal data. These include:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request that we correct any inaccurate or incomplete personal data.
  • Right to Erasure: You can request that we delete your personal data if it is no longer necessary for the purposes for which it was collected.
  • Right to Restriction: You can request that we limit the processing of your personal data in certain circumstances.
  • Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to the processing of your personal data for specific reasons, such as direct marketing.

To exercise any of these rights, please contact us at **@in*****.com .

8. Updates to This Security Policy

We regularly review and update this Security Policy to reflect changes in our practices or regulatory requirements. Any updates will be posted on this page, and the “Last Updated” date will be revised accordingly. We encourage you to check this page periodically for any updates.

9. Contact Information

If you have any questions, concerns, or requests regarding the security of your personal data, please contact us at:

Inconde
Email: **@in*****.com

This website stores cookies on your computer. Cookie Policy