Data Breach Notification Policy

1. Introduction

This Data Breach Notification Policy (“Policy”) outlines the procedures and responsibilities related to data breach notifications for CHARLOSEYCHELL.EU (“we,” “our,” or “the website”). We are committed to protecting your data and complying with data protection regulations, including the General Data Protection Regulation (GDPR).

2. Purpose

The purpose of this Policy is to:

2.1 Define Data Breach Notification: Explain what constitutes a data breach and the importance of timely notification.
2.2 Comply with Legal Requirements: Ensure compliance with GDPR and other applicable data protection regulations.
2.3 Protect User Rights: Protect the rights and interests of our users by promptly notifying them of data breaches that may affect their personal information.

3. What is a Data Breach?

A data breach is defined as the unauthorised access, disclosure, alteration, or destruction of personal data. This includes incidents that compromise the confidentiality, integrity, or availability of data.

4. Notification Responsibilities

4.1 Data Controller Responsibility: We, as the data controller, are responsible for assessing data breaches and determining if a breach is likely to result in a risk to your rights and freedoms.
4.2 Data Processor Responsibility: Our data processors are required to promptly report any data breaches to us.

5. Assessing and Reporting Data Breaches

5.1 Data Breach Assessment: We will assess each data breach to determine its severity and the potential impact on your rights and freedoms.
5.2 Notification to Supervisory Authority: If a data breach is likely to result in a risk to your rights and freedoms, we will report it to the relevant supervisory authority within 72 hours of becoming aware of it.
5.3 Notification to Affected Users: If a data breach is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay.

6. User Rights and Obligations

6.1 Right to Be Informed: You have the right to be informed about data breaches that may affect your personal information.
6.2 Reporting Suspicious Activity: If you suspect a data breach or have information related to a potential breach, please report it to us immediately via our Contact form.

7. Contents of Data Breach Notification

In the event of a data breach, our notification will include:

7.1 Description of the Breach: A clear and concise description of the breach, including the date, time, and nature of the incident.
7.2 Contact Information: Contact details of our data protection officer or the relevant point of contact for further information.
7.3 Measures Taken: Information about the measures taken to mitigate the breach and prevent future incidents.

8. Data Breach Records

We will maintain records of all data breaches, including their effects and the actions taken, as required by GDPR.

9. Review and Updates

This Policy will be reviewed regularly to ensure it remains effective and compliant with data protection regulations. Updates may be made as necessary.

10. Contact Us

If you have any questions or concerns about this Data Breach Notification Policy, please contact us via the Contact form on our website.