We have set out the basic principles by which ARIES processes the personal data of customers, suppliers, business partners, employees, and other individuals, and indicates the responsibilities of its business functions and employees while processing personal data.
Principles and objectives of our Data Protection Policy include:
- Lawful, fair, and transparent processes
- Prevent further processing of data beyond specified purposes
- Minimise the collection of data and protect data subjects concerned
- Ensure all data processed is accurate, and where necessary up to date
- Data is not to be kept any longer than is necessary for its purpose
- Ensure data is protected from loss, alteration, and disclosure
- Collect the least amount of personal data possible
- Apply same rules to supply chain and third parties
- Ensure accountability via Data Protection Officer
- Awareness and control of cross-border transfer
- Build data protection into business activities
- Ensure secure use, retention, and disposal
- Ensuring right of access by data subjects
- Ensuring data portability if required
- Ensuring rights of data erasure
- Effective response to breach
- Effective recovery plans
The responsibility for ensuring appropriate personal data processing lies with everyone who works for or with ARIES and has access to personal data processed byARIES.