Privacy Policy

This privacy policy is effective immediately.

This Privacy Policy explains what information of yours will be collected by Qualium Systems when you access the website at www.qualium-systems.com (the “website”) and other services provided by Qualium Systems on which a link to this Privacy Policy is displayed, and all other communications with you through written or oral means, such as email or phone. It describes how the information will be used, how you can control the collection, correction and/or deletion of information and how to get in touch with us if you need. Our privacy practices are designed to provide a high level of protection for your personal data. We will not use or share your information with anyone except as described in this Privacy Policy. Please read this Privacy Policy carefully to understand our views and practices regarding your personal data before browsing this website.

Definitions

In this Privacy Policy:

  • Personal Data: any information relating to an identified or identifiable natural person.
  • Processing: any operation or set of operations which is performed on personal data or on sets of personal data.
  • Controller: the natural or legal person which determines the purposes and means of the processing of personal data.

GDPR Compliance

We are committed to protecting the personal data of our clients and employees. Our processes comply with the General Data Protection Regulation (GDPR), ensuring that all personal data is handled with the utmost care and security. We implement appropriate technical and organizational measures to safeguard personal data against unauthorized access, disclosure, alteration, and destruction.

Qualium Systems’ Security Management framework embodies a robust and comprehensive approach designed to safeguard our clients’ businesses from potential threats and vulnerabilities.

ISO 9001 and ISO 27001 Compliance

We are committed to maintaining high standards of quality and information security, as outlined in ISO 9001 and ISO 27001 standards.

  1. Customer Feedback: We actively seek and integrate customer feedback regarding privacy concerns into our continuous improvement processes to enhance customer satisfaction and meet regulatory requirements.
  2. Process Documentation: All processes related to data handling and privacy are thoroughly documented and accessible for review and audit purposes to ensure transparency and accountability.
  3. Training and Awareness: Regular training sessions are conducted for all employees to ensure awareness and understanding of data protection and privacy practices.
  4. Risk Assessment: Regular risk assessments are conducted to identify and mitigate potential risks to personal data, ensuring proactive protection measures are in place.
  5. Access Control: Strict access control measures are implemented to ensure that only authorized personnel have access to personal data, safeguarding against unauthorized access and potential breaches.
  6. Incident Management: A detailed incident response plan is in place to handle data breaches and security incidents effectively, minimizing potential harm and ensuring compliance with legal requirements.
  7. Audit and Review: Regular audits and reviews of our information security management system are conducted to ensure ongoing compliance with ISO 27001 standards and effectiveness in protecting personal data.

Data Collection and Usage

We collect personal information including name, email, job title, phone number, and other relevant details through forms, emails, and other communications. This data is collected with the user’s explicit consent and is used solely for providing requested services, responding to inquiries, processing job applications, and sending marketing communications.

Legal Basis for Processing Data

We process personal data based on the following legal grounds:

  • Consent: When you have given clear consent for us to process your personal data for specific purposes.
  • Contract: When the processing is necessary for a contract you have with us, or because you have asked us to take specific steps before entering into a contract.
  • Legal Obligation: When the processing is necessary for us to comply with the law.
  • Legitimate Interests: When the processing is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests are not overridden by your rights and interests

User Rights

Users have the following rights regarding their personal data:

  • Right to Access: You can request access to your personal data.
  • Right to Rectification: You can request corrections to any inaccurate or incomplete personal data
  • Right to Erasure: You can request the deletion of your personal data under certain conditions.
  • Right to Restrict Processing: You can request the restriction of processing of your personal data under certain circumstances.
  • Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format, and have the right to transmit those data to another controller.
  • Right to Object: You can object to the processing of your personal data in certain situations.
  • Rights Related to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Processing Special Categories of Personal Data

If we process special categories of personal data (such as data related to health, biometrics, etc.), we ensure that such processing is carried out with additional safeguards and is based on explicit consent or other legal grounds as required by GDPR.

Data Transfer and Security

Data may be transferred internationally in compliance with GDPR requirements. We ensure that appropriate safeguards are in place, such as standard contractual clauses or binding corporate rules, to protect your data. We implement robust technical and organizational measures to secure your personal data against unauthorized access, loss, or alteration. This includes encryption, access controls, regular security audits, and compliance with ISO 27001 standards.

Data Breach Notification

In the unlikely event of a data breach, we will promptly notify the relevant supervisory authority and affected individuals as required by GDPR. Our notification will include the nature of the breach, the likely consequences, and the measures taken to address it.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect anonymous data and enhance our services. You can manage your cookie preferences through your browser settings. Detailed information about the types of cookies we use and their purposes is available in our Cookie Policy.

How the Information About You is Used

We use the information that we collect to operate and maintain our website and to provide the services and information that you request, to allow you to contact us, provide access to the requested whitepaper, respond to your questions and concerns. We will also process your job applications where you applied for a vacancy or would like to join us as a freelancer. When you register your personal account, we will process your data in order to provide you information about company updates and relevant service proposals. We will also send you updates on latest products, event announcements, and thought leadership or notifications of company news, hot vacancies and marketing offers where we have obtained your consent or you give us your email address expressly to receive marketing. If you have consented to receive marketing, you have a right at any time to stop us from contacting you for marketing purposes. You may unsubscribe or update your email preferences at any time by following the instructions contained within the email or by sending an email to the address provided in the Contact section. We can also process your personal data if it is necessary for us to administer the contractual relationship between ourselves and our suppliers/members in connection with the performance of a contract. Where you are an existing customer of Qualium Systems and we have an existing relationship with you, or we reasonably believe you can be our customer, we will process your data based on legitimate interest and send you information about products and services, events or other material that will be relevant to your individual interests and process your personal information to make sure we send you only relevant, targeted information. You can opt-out of this at any time by following the instructions contained within the email or by sending an email to the address provided in the Contact section

Other Websites

This website contains links to other websites. This Privacy Policy only applies to this website so when you link to other websites you should read their own privacy policies. Qualium Systems is not responsible for the privacy practices or the content of such websites.

Integrated Services

You may be given the option to fill in the contact form through the use of your user name and passwords for certain services provided by third parties (each, an “Integrated Service”), such as through the use of your LinkedIn or Facebook account, or otherwise have the option to authorize an Integrated Service to provide personal data or other information to us. By authorizing us to connect with an Integrated Service, you authorize us to access and store your name, email address(es), date of birth, gender, current city, profile picture URL, and other information that the Integrated Service makes available to us, and to use and disclose it in accordance with this Privacy Policy. You should check your privacy settings on each Integrated Service to understand what information that Integrated Service makes available to us, and make changes as appropriate. Please review each Integrated Service’s terms of use and privacy policies carefully before using their services and connecting us.

Data Retention

We keep your personal data for as long as it is necessary to do so to fulfill the purposes for which it was collected as described above. The criteria we use to determine data retention periods for personal data includes the following: retention in accordance with legal and regulatory requirements. We may retain and use your information in order to comply with our legal obligations, resolve disputes, prevent abuse.

Contact Information

If you have any questions or concerns about our privacy practices or your rights under GDPR, please contact our Data Protection Officer at: admin@qualium-systems.com.

Changes to the Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or industry standards. We will notify you of any significant changes and indicate the date of the latest revision.

Implementing these changes will help ensure that the Qualium Systems Privacy Policy is fully compliant with GDPR and reflects the company’s commitment to data protection.