General Personal Data Protection Policy
By providing smart machines processing traditional mail and software dedicated to digital communications management or aimed at facilitating parcel processing, Quadient handles large quantities of confidential information on a daily basis. Protecting them has always been of very high concern for the organization, whether they belong to our employees, direct or indirect customers. Aware of the consequences of a security failure in its operations, Quadient is committed to safeguarding the confidentiality, integrity and availability of all physical and electronic information assets to ensure that regulatory, operational and contractual requirements are fulfilled.
Our reputation and ongoing relationships with our employees and customers are among our most valuable assets. By complying with this policy in our daily business, we will all contribute to maintaining Quadient’s good name and its good relationship with its customers and other stakeholders.
On May 25, 2018, in a continued effort for transparency in its practices, Quadient updated its General Data Protection Policy, providing more details of the different categories of personal data collected and how the data is used, shared and protected.
Key changes in the Policy are:
- A consolidated General Data Protection Policy for all Quadient websites and apps with key principles.
- Compliance with the requirements under the new EU General Data Protection Regulation (GDPR), coming into effect on May 25, 2018.
- An updated Privacy and Cookies Policy allowing Site visitors and customers to understand what information is being collected and for what purpose.
- Details on cookies we use, making it easier for Site visitors and customers to manage and control the information we or our partners may collect to provide our services.
Quadient implemented a strong Data Protection Policy based on the following principles:
- Personal data shall be processed in accordance with the six principles set out in the GDPR, as well as with the practices and procedures throughout the organization.
- Each Quadient entity shall have a Data Protection Coordinator (DPC) whose role is to ensure compliance with the GDPR, this policy and any relevant Quadient procedures and practices. Specific responsibilities include maintaining a register of Personal data processing, assessing the current knowledge of data protection within the company and ensuring that appropriate training on data protection is provided to company staff.
- Any personal data breach shall be immediately reported, and all staff shall co-operate with the DPC in the investigation and management of that breach, including the limitation of impact for the data subject.
- Each Quadient entity shall require from its partners and subcontractors to act only upon instructions from Quadient and to comply with obligations equivalent to those imposed on Quadient relating to personal data protection.
- Quadient shall prevent loss, misuse and data corruption, or theft of Personal data by limiting the access to personal data only to entrusted parties and protecting information processing facilities.
Compliance with this Policy is mandatory. This applies to all the employees from Quadient and Quadient's subsidiaries, including temporary employees, contractors, visitors and partners with temporary, limited or unlimited access to our information technology systems. Quadient's management has the responsibility to implement this Policy statement and its objectives, and provide adequate resources to ensure compliance with best in class practices.
This policy will be reviewed on a regular basis.
Labels and Certifications
Quadient has received several recognitions for its performance and transparency level on environmental, social and governance criteria.