AMAG Technology is committed to ensuring the security and protection of the personal information that we process.
AMAG Technology is committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have always had a robust and consistent data protection program in place, however, we are updating and expanding this program to meet the demands of the GDPR and the UK’s Data Protection Bill. Our goal was to be fully compliant with the GDPR by 25th May 2018.
AMAG Technology takes the privacy and security of our members and their personal information very seriously and takes every reasonable measure and precaution to protect and secure the personal data that we process.
Our GDPR Preparation
Policies & Procedures – AMAG has revised its data protection policies and procedures to meet the requirements and standards of the GDPR and any relevant data protection laws, including:
Data Protection – our main policy and procedure document for data protection has been overhauled to meet the standards and requirements of the GDPR. Accountability and governance measures are in place to ensure that we understand and adequately disseminate and evidence our obligations and responsibilities.
Data Retention & Erasure – we have updated our retention policy and schedule to ensure that we meet the ‘data minimization’ and ‘storage limitation’ principles and that personal information is stored, archived and destroyed compliantly and ethically.
Privacy Notice – all individuals whose personal information we process will be informed of why we need it, how it is used, what their rights are, who the information is disclosed to and what safeguarding measures are in place to protect their information.
Obtaining Consent – we revised our consent mechanisms for obtaining personal data, ensuring that individuals understand what they are providing, why and how we use it and giving clear, defined ways to consent to us processing their information. We have developed stringent processes for recording consent, making sure that we can evidence an affirmative opt-in.
Direct Marketing – we revised the wording and processes for direct marketing, including clear opt-in mechanisms for marketing subscriptions; a clear notice and method for opting out and providing unsubscribe features on all subsequent marketing materials.
Staff training- All members of the office staff received training on GDPR and will be knowledgeable on how we comply.
AMAG Technology takes the privacy and security of our members and their personal information very seriously and takes every reasonable measure and precaution to protect and secure the personal data that we process.
If you have any questions please email dataprotectionreport@amag.com.
