The General Data Protection Regulation comes into effect in the European Union on the 25th of May 2018. Expak Systems Oy is committed to safeguarding privacy, data security and protection of the personal data. Data protection is an integral part of the Expak service. The client data protection has always been a priority us and maintaining your trust is a prerequisite to our operations.
Expak as the data processor and the data controller
Using the Expak app to manage your data means that you have engaged Expak as a data processor to carry out certain processing activities on your behalf. Therefore, EXPAK acts as the Personal Data processor defined in the Data protection’s regulatory framework and the Client as the registrar. Additionally, Expak acts as the data controller for the personal data we collect about you, the user of our web app and website. According to Article 28 of the GDPR, the relationship between the controller and the processor needs to be made in writing. This is where we bring our contracts up to the standards required by GDPR.
Changes at Expak
- We’ve created a page that explains our data protection and security. It contains information on how Expak processes and protects your information. The data protection PDF document found on the page details in full what information is collected and how it is processed. You can reach the page either by clicking here http://expak.fi/en/privacy or through the link found in the footer of our homepage.
- According to General Data Protection Regulation (GDPR), all processing of personal information done by a data processer has to be predetermined through a written agreement.
- We’re sending out personal data processing agreements which we hope to be signed using VismaSign electronic signature service. At request, we can also send the documentation to you via email. We’ve chosen the VismaSign-service, so that you, as our client, will also immediately receive a confirmation of the agreement. Using the service does not require registration.