Introduction
This Data Processing Agreement ("DPA") forms part of the Terms of Service between Hi-G and users regarding the processing of personal data in accordance with applicable data protection laws.
Definitions
For the purposes of this DPA:
- "Personal Data" means any information relating to an identified or identifiable natural person
- "Processing" means any operation performed on personal data
- "Controller" means the entity that determines the purposes and means of processing
- "Processor" means the entity that processes personal data on behalf of the controller
Data Processing Principles
Hi-G processes personal data in accordance with the following principles:
- Lawfulness, fairness, and transparency
- Purpose limitation
- Data minimization
- Accuracy
- Storage limitation
- Integrity and confidentiality
Technical and Organizational Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
- Encryption of personal data
- Regular security assessments
- Access controls and authentication
- Staff training on data protection
Data Subject Rights
We assist in ensuring data subjects can exercise their rights, including:
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right to data portability
Data Breach Notification
In the event of a personal data breach, we will notify relevant authorities and affected individuals in accordance with applicable law requirements.