Data Security & GDPR Compliance Policy

Salt of the Earth prioritizes the protection of personal data and compliance with data protection regulations, including the General Data Protection Regulation (GDPR).

Policy Overview:

• Data Protection Principles: We adhere to key data protection principles, including lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, and confidentiality.
• Security Measures: We implement robust security measures to protect personal data from unauthorized access, alteration, disclosure, or destruction. This includes encryption, access controls, and regular security assessments.

Compliance and Rights:

• GDPR Compliance: We comply with all GDPR requirements, including obtaining consent for data processing, providing data subjects with access to their data, and ensuring the right to rectification, erasure, and portability.
• Employee Training: All employees receive regular training on data protection principles and practices. This ensures that everyone understands their responsibilities in safeguarding personal data.
• Breach Management: We have procedures in place to detect, report, and investigate data breaches. In the event of a breach, affected individuals and relevant authorities are notified promptly.