Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, also called the General Data Protection Regulation (GDPR), sets out the legal framework for processing personal data. The GDPR upholds the rights and obligations of controllers, processors, data subjects and recipients. We process personal data for the purposes of our business. To properly understand this policy:
Article 12 of the GDPR requires that data subjects be informed of their rights in a concise, transparent, intelligible and easily accessible form.
The purpose of this policy is to meet virtual cathlab information obligation and formalise the rights and obligations of its customers and prospects regarding personal data processing for all of the services provided by virtual cathlab.
Virtual cathlab makes every effort to ensure that data is processed according to clear internal governance. However, this policy only concerns processing for which virtual cathlab is responsible and therefore does not pertain to processing deployed or utilised outside virtual cathlab governance rules (stealth IT or shadow IT). Personal data processing can be managed directly by virtual cathlab or by a service provider specifically chosen by virtual cathlab. This policy is separate from any other documents which may apply between virtual cathlab and our customers and prospects.