)
On this page, we have gathered information about the General Data Protection Regulation (2016/679) (GDPR) and how EasyPark handles personal data.
What is GDPR?
GDPR is a regulation adopted by the EU to harmonize the rules for processing personal data across the EU/EEA. It specifies the requirements for businesses and organizations that handle personal data and sets out the rights of individuals.
What constitutes personal data?
Personal data refers to any information related to a living person that can be used to directly or indirectly identify them. Examples include names, photographs, phone numbers, email addresses, vehicle registration plates, and GPS coordinates.
What is a data subject?
A data subject is a person to whom the personal data relates.
What is a data controller?
A data controller is an individual or organization (either alone or in conjunction with others) that determines the purposes and means of processing personal data.
What is a data processor?
A data processor is a person or entity that processes personal data on behalf of the data controller.
Are there specific rules companies should follow to ensure compliance?
Article 5 of the EU GDPR states that personal data must be:
Processed lawfully, fairly, and transparently
Collected for specified, legitimate purposes
Sufficient, relevant, and limited to what is necessary
Accurate and kept up to date, stored only as long as necessary
Processed in a manner that ensures appropriate security of the personal data
Does GDPR apply to countries outside the EU/EEA?
GDPR applies not only to organizations located in the EU/EEA but also to companies and organizations located outside the EU if they offer goods or services to EU/EEA residents or process personal data of individuals residing in the EU/EEA. Therefore, GDPR applies to all companies and organizations that process personal data of individuals residing in the EU/EEA, regardless of the company's location.
How does EasyPark process my personal data?
For more information on how EasyPark processes personal data, please refer to our Privacy Policy.
What security measures has EasyPark implemented to protect personal data?
EasyPark has implemented an Information Security Management System (ISMS) in accordance with ISO 27001. Additionally, EasyPark has appointed a head of information and IT security and established internal controls as part of the ISMS.
Does the data subject need to give consent to the data controller?
A company or organization must have a legal basis to process an individual's personal data. A legal basis for processing personal data could include the necessity of processing to fulfill a contract with the data subject, to comply with a legal obligation, or if the data subject has given consent to the processing. The data subject should be informed about how their personal data will be processed, and consent should be obtained when required. A full description of EasyPark's processing of your personal data and the legal grounds for such processing can be found in EasyPark's Privacy Policy.
Does EasyPark use vendors that process personal data?
Yes, EasyPark contracts with vendors who provide services for EasyPark. EasyPark has entered into data processing agreements with all vendors who process personal data on behalf of EasyPark.
DPO Contact Information
For privacy-related inquiries, you can contact our Data Protection Officer (DPO) at:
dpo@easypark.net