At Alfa, our obligation is to keep your personal information confidential and protected, and we highly appreciate the trust and confidence you give us.
We will keep your personal information on file only as long as it is necessary to fulfill legal and contractual obligations. Our employees are all subject to our code of conduct and corporate policies, and furthermore subject to recurring training, by which they are required to maintain the confidentiality, integrity and availability of customer information. Access to your personal information by our employees is limited and given only in order to provide the best service possible.
This notice explains our practices with regard to your personal information.
About our Approach
Our Data Protection (Privacy) approach addresses privacy principles based on internationally recognized information security and data protection best practices aligned with data protection legislation and regulations around the world. This ensures the proper protection and management of Alfa’s customers’ and employee information.
Processing of personal information
- We only process personal information in order to fulfill our contractual obligations to a customer before, during and after the execution of an assignment. This may include information about children and information which may be regarded as sensitive depending on the nature of the assignment. Processing after the execution of the assignment may include the communication of Alfa customer newsletter and updates
- We will furthermore process personal information when it is required to comply with applicable legislation
- Personal information will not be collected, processed or transferred, unless adequate privacy protection mechanisms are in place
- Personal information will not be subject to automated decision-making
Transfer to third countries
Depending on nature of services contracted between the customer and Alfa, there may be a need for transferring the Personal Information to processors established in third countries and jurisdictions in which GDPR is not recognized, as part of the standard process for carrying out the services booked by the customer. This, as such information in each country, will be required by e.g. local moving services agents, sea and air freight companies and their local agents, customs and other local authorities, customs agents etcetera, and by any intermediate ports and airports and their local authorities during these freights.
Choice and consent
By becoming a customer you give your explicit consent with respect to the collection, use, and disclosure of personal information as described in this notice. This includes, when necessary to fulfill the contractual obligations, allowing Alfa to transfer Personal Information to processors established in third countries constituting service providers and authorities involved to the extent limited to the need for each service.
Explicit consent in this context means that you were clearly presented with an option to agree or disagree with the collection, use, or disclosure of personal information.
As a customer and data subject you have, of course, the right to withdraw you consent. This can be done by filing such a request with email@example.com
We will, through appropriate management and strict application of criteria and controls:
- Observe and comply with conditions regarding the fair collection and use of information.
- Meet our legal obligations to specify the purposes for which information is used.
- Collect and process the appropriate information, and only to the extent that it is needed to fulfill our operational needs or to comply with any applicable legal requirements.
We ensure that we have a Privacy and Data Protection Officer entrusted with the specific responsibility for ensuring compliance with Data Protection.
We ensure that everyone processing personal information understands that they are contractually responsible for following optimal data protection practices aligned with internal procedures and legal requirements.
We collect, process and transfer information, including the personal information of our customers, about customer through computerized and paper-based data processing systems.
We have established routine processing functions. We ensure that all processing and transfers of personal information are subject to systematic information security and data protection measures.
We shall obtain and process personal data fairly and in accordance with statutory and other legal obligations. We collect personal information for the sole purposes to accommodate customers before, during and after their assignment has been carried out.
Use, retention, and disposal
We limit the use of personal information to the sole purpose of executing your assignment, for which you have given your explicit consent.
We retain personal information for only as long as necessary to fulfill the stated purposes or as required by law or regulations and thereafter appropriately dispose of such information.
Access and other data subject rights
You may reasonably access and update your personal information by contacting Alfa.
This notice provides basic information about our processing of your personal information and your privacy rights including:
- right of access to a copy of the information comprised in their personal data
- right to object to processing that is likely to cause or is causing damage or distress
- right to prevent processing for direct marketing
- right to object to decisions being taken by automated means
- right in certain circumstances to have inaccurate personal data rectified, blocked, erased or destroyed
- right to claim compensation for damages caused by a breach of the GDPR
Should you have additional questions, you may contact the Alfa Privacy and Data Protection Officer via: firstname.lastname@example.org
Disclosure to third parties
We shall use and disclose your personal data only in circumstances that are necessary for the purposes for which we collected the data. We will never sell your personal information to third parties.
Information Security & Data Protection
We protect personal data against unauthorized access (both physical and digital) aligned with our internal information security policy and procedures. Our Information Security Management System is certified against ISO/IEC 27001 by an accredited independent certification body. We shall take appropriate security measures against unauthorized access to, or alteration, disclosure or destruction of personal data and against its accidental loss or destruction. Personal data will only be accessible to authorized staff.
We endeavor to maintain accurate, complete, and relevant records of your personal infor-mation during the length of an assignment, and only for the purposes identified in this notice.
We retrieve your personal data from our business systems and corresponding e-mails.
Please note that Alfa and our clients have a shared responsibility with regard to the accuracy of your personal information. Please let us know of any changes to your personal information.
Monitoring and enforcement
We monitor for compliance with our privacy policies and procedures and have plans of action to address privacy-related complaints and disputes. All Alfa staff is made aware that a breach of the rules and procedures identified in this policy may lead to disciplinary action being taken against them. If you believe that your personal information is not handled in accordance with the applicable law or our privacy policies, you may submit a complaint to the Alfa Data Protection Officer who will investigate the complaint. You may furthermore lodge a complaint with the relevant Supervisory Authority.