Data protection according to the basic regulation DSGVO
The computer hardware and software are to be used for operational tasks, for the purposes intended in each case, and secured against loss and manipulation. Use for private purposes requires the express permission. Each employee is responsible for the implementation of the policy in his area of responsibility. Compliance must be monitored regularly by him. Those responsible for the processing of the systems in use ensure that their employees (users) are informed about this policy; this also applies to temporary employees. The Data Protection Officer advises on the implementation of the Directive and checks its compliance. In that regard, all addressees of the directive are obliged to provide information to the DSB.
The company data protection officer / privacy coordinator
Placos GmbH has appointed a company data protection officer (DSB) and an absence representative in accordance with Article 37 DS-GVO. The contact details of the data protection officer are:
Tel .: 0351 418805023
Shepherd Street 61
D - 01067 Dresden
The DSB took on the tasks assigned to it by law and from this guideline with non-directive application of its specialist knowledge as well as its professional qualifications. The data protection officer informs and advises the company management as well as the employees regarding their data protection obligations. It is responsible for monitoring compliance with data protection legislation and the policies of the person responsible for the protection of personal data, including the allocation of responsibilities, awareness-raising and training of employees. In the case of risky data processing, the DPO provides advice to the person responsible for assessing the risk. The DSB reports directly to the management. The DSB is involved in all data protection issues at an early stage and is supported both by the company management and the employees in the performance of their duties. Employees can contact the DSB immediately with instructions, suggestions or complaints, whereby absolute confidentiality is maintained upon request. The DSB reports annually in an activity report to the management about the examinations, complaints and any organizational deficiencies that can still be remedied.
Procurement / hardware and software
The procurement of hardware and software basically takes place at the request of the person / department who decides on the processing by the central IT procurement. Already with the selection of hard and software the principle of the guarantee of data protection by technology design and by privacy-friendly presettings is considered as a supporting criterion. If a new procedure for the processing of personal data is to be introduced with the procurement, the data protection officer must be informed in good time in advance by the requesting body. Procurement will only take place after DSB has given its opinion. The DSB advises on whether the implementation of a privacy impact assessment is required. Private hardware and software may not be used to process personal data. The use of private hardware and software at home and abroad (eg private notebooks) requires the approval of the IT department on a case-by-case basis. The IT department maintains a list of the hardware and application programs used.