On this page, we have collected information about the General Data Protection Regulation (2016/679) (GDPR) and how EasyPark handles personal data.
What is GDPR?
GDPR is a regulation adopted by the EU to harmonize the rules for the processing of personal data throughout the EU/EEA. The GDPR specifies the requirements for companies and organizations that handle personal data and specifies rights for individuals.
What constitutes personal data?
All information related to a natural person that can be used to directly or indirectly identify the person is considered personal data, for example names, photographs, telephone numbers, e-mail addresses, car registration plates and GPS coordinates.
What is a registrant?
A data subject is an individual to whom the personal data is related.
What is a personal data controller?
A personal data controller is someone who (either alone or together with others) determines the purposes for the processing of personal data and how the personal data is processed.
Are there any specific rules companies should follow to ensure compliance?
Article 5 of the EU GDPR states that personal data must be:
Processed legally, fairly and in an open manner
Collected only for specified, explicit and legitimate purposes
Appropriate, relevant and limited to what is necessary
Accurate and up to date. Kept only for the absolute time needed and no longer
Processed in a way that ensures appropriate security for the personal data
Is the GDPR also applicable in countries outside the EU/EEA?
The GDPR applies not only to organizations located within the EU/EEA, but also to companies and organizations outside the EU if they offer goods and services to EU/EEA citizens and thereby process personal data. Therefore, the GDPR applies to all companies and organizations that process personal data from registered persons residing in the European Union or the EEA, regardless of the location of the company.
How does EasyPark process my personal data?
For further information on how EasyPark processes personal data, see our privacy policy.
What security measures has EasyPark implemented to protect personal data?
EasyPark has implemented an information security management system (ISMS) in accordance with ISO 27001. In addition, EasyPark has recruited an information and IT security manager and established internal controls as part of the ISMS.
Does the data subject need to give consent to the personal data controller?
A company or organization must have a legal basis for processing an individual's personal data. A legal basis for processing personal data is, for example, that the processing is required to fulfill an agreement with the data subject, to fulfill a statutory obligation or if the data subject has given his consent to the processing. The data subject should be informed about how the personal data will be processed and in cases where consent is required for the processing. If a certain type of treatment requires consent, consent must be obtained. A full description of EasyPark's processing of your personal data and the legal basis for the processing can be found in EasyPark's privacy policy.
Does EasyPark use suppliers that process personal data?
Yes, EasyPark has agreements with suppliers who perform services for EasyPark. EasyPark has entered into data processing agreements with all suppliers who process personal data on EasyPark's behalf.
DPO contact information.
Contact information for our DPO - dpo@easypark.net