La-Coppera is committed to ensuring compliance with the General Data Protection Regulation (GDPR) and protecting the rights of individuals regarding their personal data. This GDPR Compliance Statement outlines our approach to data protection and privacy in accordance with GDPR requirements.
1. Data Collection and Processing
1.1 Lawful Basis
We collect and process personal data based on lawful grounds as defined by GDPR, including the necessity for the performance of a contract (e.g., processing orders), compliance with legal obligations, and legitimate interests pursued by La-Coppera (e.g., improving our services).
1.2 Consent
Where required by GDPR, we obtain explicit consent from individuals before collecting or processing their personal data for specific purposes, such as sending marketing communications.
1.3 Data Minimization
We only collect and retain personal data that is necessary for the purposes for which it was collected. We do not process excessive or irrelevant data.
2. Data Security and Confidentiality
2.1 Security Measures
We implement technical and organizational measures to ensure the security and confidentiality of personal data, including encryption, access controls, and regular security assessments.
2.2 Data Breach Response
In the event of a data breach involving personal data, we have procedures in place to promptly assess and mitigate the breach, notify affected individuals and authorities where required, and take appropriate corrective actions.
3. Data Subject Rights
3.1 Right to Access
Individuals have the right to access their personal data held by La-Coppera and request information about how their data is processed.
3.2 Right to Rectification
Individuals can request the rectification of inaccurate or incomplete personal data.
3.3 Right to Erasure
Under certain circumstances, individuals have the right to request the erasure of their personal data (“right to be forgotten”).
3.4 Right to Data Portability
Individuals can request to receive their personal data in a structured, commonly used, and machine-readable format and transmit it to another data controller.
3.5 Right to Object
Individuals have the right to object to the processing of their personal data in certain situations, such as direct marketing.
4. Data Transfers
We ensure that any transfer of personal data outside the European Economic Area (EEA) complies with GDPR requirements, such as using approved transfer mechanisms like Standard Contractual Clauses or obtaining adequacy decisions for data transfers to third countries.
5. Data Protection Officer (DPO)
La-Coppera has appointed a Data Protection Officer (DPO) responsible for overseeing GDPR compliance, handling data protection inquiries, and cooperating with supervisory authorities.
6. Privacy by Design and Default
We incorporate privacy principles into our data processing activities from the outset (“privacy by design”) and ensure that privacy settings are set to the highest level by default (“privacy by default”).
7. Accountability and Record-Keeping
We maintain records of data processing activities, conduct regular privacy impact assessments, and demonstrate accountability for GDPR compliance through policies, procedures, and documentation.
8. Contact Us
If you have any questions or concerns about La-Coppera’s GDPR compliance or wish to exercise your data protection rights, please contact our Data Protection Officer at:
Email: lacoppera2003@yahoo.com
Phone: +91-9557400007
Address: Plot No. 41, Phase 1, Sector 53, HSIIDC Industrial Estate, Kundli, Sonipat, Haryana – 131028, India
Thank you for entrusting La-Coppera with your personal data. We are committed to safeguarding your privacy and ensuring GDPR compliance.
