GDPR Risk Policy

    Last updated: January 30, 2025

    Our Commitment

    Picaii is committed to ensuring the security and protection of personal data that we process, and to provide a compliant and consistent approach to data protection. This policy covers our measures to protect personal data and our compliance with the General Data Protection Regulation (GDPR).

    Data Protection Officer

    👤 Appointment

    Picaii has appointed a Data Protection Officer (DPO) to oversee our data protection responsibilities. The DPO can be contacted at info@picaii.com.

    Legal Basis for Processing

    ⚖️ Processing Grounds

    We collect and process personal data only where we have a legal basis under GDPR. The specific legal grounds for processing are detailed in our Privacy Policy.

    Data Security

    🔒 Technical Measures

    We implement appropriate technical and organizational measures to ensure data security, including encryption and access controls.

    👥 Staff Training

    Our employees receive regular training on data protection and privacy practices to ensure consistent handling of personal data.

    Data Management

    ⏳ Retention

    We retain personal data only for as long as necessary for the purposes for which it was collected, as outlined in our Privacy Policy.

    ✅ Subject Rights

    We maintain processes to handle data subject requests, including access, rectification, erasure, and portability rights.

    Third Party Processing

    🤝 Service Providers

    We carefully select third-party service providers and require them to maintain appropriate security standards through data processing agreements.

    📋 Compliance

    All third-party processors are required to comply with GDPR and process personal data only according to our instructions.

    For questions about our GDPR compliance, please contact our Data Protection Officer at info@picaii.com