Privacy & Data Protection
Privacy and data protection are two interrelated Internet governance issues. Data protection is a legal mechanism that ensures privacy. Privacy is usually defined as the right of any citizen to control their own personal information and to decide about it.
LPA Law Firm Albania secures all client personal information against loss, damage, modification, unauthorized access, or disclosure as required under International Data Protection Standards.Information voluntarily provided by the client will be protected by the appropriate computer, network, and Internet technical security controls at the employee and departmental level to prevent unauthorized access. Some of these security controls are: password and user identification verification, data encryption, confidential transmissions, secure storage areas, and audit trails. This Corporate Policy applies to all processing of personal data relating to clients, prospects, partners, shareholders and employees. This policy for data protection applies in all cases as far as it is not in conflict with the respective national law and also applies in countries in which there is no corresponding national legislation in place.
Principles for Processing of Personal Data
- Fairness and lawfulness
- Restriction to a specific purpose
- Transparency
- Data Economy
- Factual accuracy and up-to-dateness of data
- Data requiring special protection
- Need-to-know principle
- Automated individual decisions
- Additional Principles
Implementation
In order to meet the requirements of the above principles, LPA Law Firm Albania will:
- Observe fully the conditions regarding the fair collection and use of personal data;
- Meet its obligations to specify the purposes for which personal data is used;
- Collect and process appropriate personal data only to the extent that it is needed to fulfil operational or any legal requirements;
- Ensure the quality of personal data used;
- Apply strict checks to determine the length of time personal data is held;
- Ensure that the rights of individuals about whom the personal data is held, can be fully exercised;
- Take the appropriate technical and organizational security measures to safeguard personal data;
- And ensure that personal data is not transferred abroad without suitable safeguards.