GDPR Risk Policy
Last updated: January 30, 2025
Our Commitment
Picaii is committed to ensuring the security and protection of personal data that we process, and to provide a compliant and consistent approach to data protection. This policy covers our measures to protect personal data and our compliance with the General Data Protection Regulation (GDPR).
Data Protection Officer
👤 Appointment
Picaii has appointed a Data Protection Officer (DPO) to oversee our data protection responsibilities. The DPO can be contacted at info@picaii.com.
Legal Basis for Processing
⚖️ Processing Grounds
We collect and process personal data only where we have a legal basis under GDPR. The specific legal grounds for processing are detailed in our Privacy Policy.
Data Security
🔒 Technical Measures
We implement appropriate technical and organizational measures to ensure data security, including encryption and access controls.
👥 Staff Training
Our employees receive regular training on data protection and privacy practices to ensure consistent handling of personal data.
Data Management
⏳ Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, as outlined in our Privacy Policy.
✅ Subject Rights
We maintain processes to handle data subject requests, including access, rectification, erasure, and portability rights.
Third Party Processing
🤝 Service Providers
We carefully select third-party service providers and require them to maintain appropriate security standards through data processing agreements.
📋 Compliance
All third-party processors are required to comply with GDPR and process personal data only according to our instructions.
For questions about our GDPR compliance, please contact our Data Protection Officer at info@picaii.com