Firemax Statement of Commitment to Privacy and Protection of Personal Data
The protection of the privacy and personal data of all persons who in any way relates to Firemax (customers, service users, employees, partners and others) is a fundamental commitment of Firemax.
The treatment of Personal Data is important for the activity of Firemax, in particular, in the scope of the commercialization of its products and services, for the provision, monitoring and improvement of the quality of the services provided by Firemax, for the management of its human resources and for the fulfillment of the legal obligations to which it is subject, with the challenges that are associated with the processing of personal data for those purposes strongly influenced by technological, economic and social developments.
Firemax’s commitment is to work every day to ensure the privacy and protection of the personal data for which we are responsible, in accordance with applicable law in this regard.
With this Statement, we want to make clear Firemax’s commitment to the security, privacy, and protection of personal data and to ensure that those who treat personal data on behalf of Firemax are bound to act in accordance with applicable principles.
Principles of the Treatment of Personal Data and Rights of the Holders of Personal Data
The processing of personal data by Firemax obeys the following fundamental principles:
– Principle of lawfulness of treatment;
– Principle of limitation of purpose;
– Principle of transparency;
– Principle of adequacy and minimization of personal data;
– Principle Need to Know;
– Principle of integrity and confidentiality;
– Principle of protection of data from conception and by default.
In addition to complying with these applicable principles, Firemax is committed to ensuring the respect of the rights of Data Holders, in particular, the right of access and information regarding the personal data processed by Firemax, the right to rectification, the right to erasure, the right to data portability, the right to limitation of treatment, the right to withdraw consent, the right of opposition, the right not to be subject to individual automated decisions, including the definition of profiles , and the right of complaint to the respective supervisory authority.
- A) Principle of the lawfulness of treatment
Personal data will only be processed if and to the extent that they have the appropriate basis of lawfulness, namely: (i) when consent is given by the Personal Data Holder or when processing is necessary for (ii) (iii) fulfillment of a legal obligation, or (iv) the purposes of the legitimate interests pursued by Firemax or a third party.
- B) Principle of purpose limitation
The personal data will be processed exclusively for the purposes that determined its collection and will only be treated when legally allowed and providing the information due to the respective Personal Data Holder.
- C) Principle of transparency
The owners of personal data will be informed in a clear and concise manner in relation to the relevant aspects related to the treatment of their personal data, namely, with regard to the purposes of treatment and possible transmission to third parties.
- D) Principle of adequacy and minimization of personal data
Only personal data that are appropriate, relevant and necessary for the relevant purposes will be processed and for the period strictly necessary.
- E) Principle need to know
Only Firemax employees and partners whose functions require such access will access and process the relevant personal data.
- F) Principle of integrity and confidentiality
The personal data will be treated in a way that guarantees its security, namely (i) against illegal or unauthorized access or disclosure, (ii) against unauthorized modification, loss or destruction of personal data or accidental loss of such data personal information, and (iii) ensure that personal data will be available when necessary and permitted.
- G) Principle of data protection from conception and default
Firemax products and services, maintenance and support systems, and procedures will be developed with the aim of protecting your privacy and your personal data.
Protection of personal data
Firemax is committed to best practices in the field of data protection and has adopted a policy and standards program to ensure the confidentiality, integrity and availability of the information it handles and which is under its responsibility. all Firemax employees and stakeholders.
Firemax’s Information Security Policy establishes a broad set of technical and organizational measures in a number of security areas, including:
- i) Security measures, such as the use of firewalls and intrusion detection, the existence of a policy of access to information and registration;
(ii) physical security measures, including access control to Firemax’s physical premises by employees, partners and visitors, as well as very restricted access to Firemax’s essential technology infrastructures;
(iii) other measures, such as masking, pseudonymisation and anonymisation of personal data, as well as a set of measures aimed at realizing the principle of data protection from conception to default.
Firemax will ensure that its subcontractors and third parties will be bound by contractual obligations in order to comply with applicable laws in this area and with appropriate security measures by Firemax.
These obligations entail in particular that the respective subcontractor ensures that (i) the sharing of personal data complies with the applicable legislation, (ii) the transmission is made in a secure manner, and (iii) the subcontractors or third parties are contractually bound to respect the obligations of confidentiality that apply to them, with the restriction of non-use for any other purpose, for the benefit of themselves or others.
Compliance with information security policies, security standards and personal data protection is subject to periodic review, complemented by a rigorous information and training program for Firemax employees and partners.