The aim of the General Data Protection Regulation (GDPR) is to modernise the existing rules on data protection, taking into account technological developments and globalisation within the European Union. This new European regulation is a continuation of the 1978 French law "Informatique et Libertés" and strengthens the citizen control of the use and protection of any data concerning them. It harmonises the rules in Europe by offering a single and unique legal framework. It enables the development of digital activities across the European Union. The General Data Protection Regulation was made applicable from 25 May 2018. It creates new obligations for companies that process personal data. The GDPR also establishes new rights for data subjects, including the right to be forgotten and the right to data portability.
Comet has taken all necessary measures to comply with the GDPR as of today. Our services are offered under a secure and clear legal framework. As part of this compliance, the work carried out by comet includes the following:
- The establishment of a register that records and determines the purposes and means of processing and storing personal data, including the people with access and the retention period.
- The total security of personal data held, thus reducing the risk of any violation to this data, and the establishment of an information protocol of the CNIL in case of any violation.
Comet's personal data protection policy is detailed at https://comet.co/en/conditions-generales. If you have any questions about this policy or any subject related to how comet complies with the GDPR you can also contact us by email at privacy@comet.co.
