GDPR Compliance Policy for IBAKV GmbH

1. Introduction

IBAKV GmbH is committed to protecting the privacy and security of personal data processed in the course of our business activities. This policy outlines our approach to compliance with the General Data Protection Regulation (GDPR) and our commitment to safeguarding the rights and privacy of individuals.

2. Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) to oversee our data protection activities. If you have any questions or concerns about the processing of your personal data, please contact our DPO at info@amper-ventures.com.

3. Scope

This policy applies to all personal data processed by IBAKV GmbH, whether it is collected from employees, customers, suppliers, or other third parties.

4. Data Collection and Processing

4.1 Lawfulness, Fairness, and Transparency: We will process personal data lawfully, fairly, and transparently.

4.2 Purpose Limitation: Personal data will only be collected for specified, explicit, and legitimate purposes.

4.3 Data Minimization: We will only collect and process data that is relevant and necessary for the purposes for which it is collected.

4.4 Accuracy: We will take reasonable steps to ensure the accuracy of personal data.

5. Rights of Data Subjects

Individuals whose data is processed by IBAKV GmbH have the following rights:

5.1 Right to Access: Individuals have the right to access their personal data and information about how it is processed.

5.2 Right to Rectification: Individuals have the right to have inaccurate personal data corrected.

5.3 Right to Erasure (Right to be Forgotten): Individuals have the right to request the deletion or removal of personal data.

5.4 Right to Data Portability: Individuals can request the transfer of their personal data to another entity.

5.5 Right to Object: Individuals have the right to object to the processing of their personal data.

6. Data Security

We will implement appropriate technical and organizational measures to ensure the security of personal data, including protection against unauthorized or unlawful processing, and against accidental loss, destruction, or damage.

7. Data Breach Notification

In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify the relevant supervisory authority and, where necessary, affected data subjects, in accordance with GDPR requirements.

8. Data Protection Impact Assessments (DPIA)

Where necessary, we will conduct Data Protection Impact Assessments to identify and mitigate risks associated with processing activities.

9. International Data Transfers

Any international transfer of personal data will be in compliance with GDPR requirements, including the use of appropriate safeguards.

10. Review and Update

This policy will be reviewed regularly and updated as necessary to ensure ongoing compliance with GDPR and any other applicable data protection laws.

IBAKV GmbH

Date: November 13´th 2023

Version: 1.0