Do you have a Data Protection Officer / is there an individual within your organisation who is responsible for data protection
How do your systems/processes allow personal data relating to a specified individual to be identified, exported and deleted
What controls do you have in place to enable you to identify and delete data on receipt of a request to do so
How is access to personal data is limited to only those employees who require access for the performance of their function
What training is provided to employees to ensure they are aware of your obligations as a Data Processor under data protection laws
What obligations are your employees and contractors (if applicable) under to maintain the confidentiality of all information provided to them
Is SmartSpace.ai certified to any recognised information security standards (such as ISO 27001) or an approved code of conduct
What processes you have in place for regularly testing and evaluating the effectiveness of your data security measures
