infotechsurge GDPR Compliance

GDPR (General Data Protection Regulation)

As the EU’s GDPR (General Data Protection Regulation) became enforceable from May 25, 2018, as well as EU ePrivacy regulatory changes, infotechsurge along with its affiliates are taking the necessary steps to ensure compliance with the requirements, when new regulations come into effect.

infotechsurge is following a strategy that will safeguard our clients’ Personally Identifiable Information/ Sensitive Personal Information (PII/SPI) and that of their customers and prospects.

infotechsurge is fully committed to assisting its client to comply with the GDPR through our comprehensive privacy and security policies and protections. We have always been sensitive to customer data and this is the legacy of infotechsurge.

Our Information Security processes confirm compliance with the three core security principles of:

  • Confidentiality
  • Integrity
  • Accountability

As an entity that processes data of EU residents (as part of client requirements), we play the role of a Data Processor. The main objectives of all GDPR related initiatives at infotechsurge are based on the data protection principles mandated by the regulation – i.e. Regulation (EU) 2016/679 of the European Parliament and the Council published April 27, 2016.

infotechsurge is GDPR compliant. In the capacity of a data processer, infotechsurge is conversant with its statutory obligations and is ready to assist and cooperate with the customers to enable them to be GDPR compliant.

The processes and systems around GDPR at infotechsurge have been reviewed based on the following key principles of the regulation:

  1. Lawfulness, fairness and transparency
  2. Purpose limitation
  3. Data minimization
  4. Accuracy
  5. Storage limitation
  6. Integrity and confidentiality

Should you have any questions, please email us at info@infotechsurge.online