We take security of data very seriously. We use computer safeguards such as firewalls and data encryption, we enforce physical access controls to our buildings and files, and we authorize access to Personal Data only for those employees who require it to fulfill their job responsibilities.
IT Security Policy: This policy describes how we store and process your Personal Data on our servers in the United States and elsewhere in the world where Malliouhana facilities are located. It also describes how we protect it by maintaining physical, electronic and procedural safeguards in compliance with applicable US federal and state regulations, and EU data protection laws.
Incident Response Policy: This policy describes our response to an information security incident.
Data Breach Policy: This policy specifically describes what steps will be taken by us in case of a data breach. This includes notifying the supervisory authorities and the affected data subjects when required.
Business Continuity and Disaster Recovery Policy:This policy describes how we recover from a disaster and what steps will be taken to continue or resume routine business operations.
Malliouhana Ltd complies with the EU-U.S. Privacy Shield Framework as set forth by the US Department of Commerce regarding the transfer of personal data from the EEA to the US (“Personal Data”).
Malliouhana Ltd's self-certification to the Privacy Shield is subject to the investigatory and enforcement authority of the Federal Trade Commission.
Under certain circumstances detailed in the Privacy Shield, Data Subjects may be able to invoke binding arbitration before the Privacy Shield Panel, when other dispute resolution procedures have been exhausted.
Individuals located in the European Union have statutory rights in relation to their Personal Data. Subject to any exemptions provided by law, you may have the right to request access to Information, as well as to seek to update, delete, correct, or restrict the processing of this Personal Data. If you are located in the European Union and would like to exercise a data subject right under the GDPR.
To communicate with our Data Protection Officer, please email [email protected] Subject to applicable law, you also have the right to lodge a complaint with your local Data Protection Authority or the Dutch Data Protection Commissioner, which is Malliouhana Ltd's lead supervisory authority in the EU.
If you are residing within the European Union and believe we maintain your Personal Data within the scope of the GDPR, you may direct questions or complaints to our lead supervisory authority: