TRIDRI PERSONAL DATA PROTECTION POLICY 1.Purpose, Scope and Users TriDri, hereinafter referred to as the “Company”, strives to comply with applicable laws and regulations related to Personal Data protection in countries where the Company operates. This Policy sets forth the basic principles by which the Company processes the personal data of consumers, customers, suppliers, business partners, employees, and other individuals, and indicates the responsibilities of its business departments and employees while processing personal data. This Policy applies to the Company and its directly or indirectly controlled wholly owned subsidiaries conducting business within the European Economic Area (EEA) or processing the personal data of data subjects within EEA. The users of this document are all employees, permanent or temporary, and all contractors working on behalf of The Company.
2.Definitions The following definitions of terms used in this document are drawn from Article 4 of the European Union’s General Data Protection Regulation: Personal Data: Any information relating to an identified or identifiable natural person ("Data Subject") who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Sensitive Personal Data: Personal data which are, by their nature, particularly sensitive in relation to fundamental rights and freedoms merit specific protection as the context of their processing could create significant risks to the fundamental rights and freedoms. Those personal data include personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation. Data Controller: The natural or legal person, public authority, agency, or any other body, which alone or jointly with others, determines the purposes and means of the processing of personal data.