Data Protection Policy
Vidya industrial training institute takes its responsibilities with regard to the management of the requirements of the Data Protection Regulation very seriously. This policy sets out how the institute manages those responsibilities.
This policy therefore seeks to ensure that we:
- are clear about how personal data must be processed and the institute’s expectations for all those who process personal data on its behalf.
- comply with the data protection law and with good practice.
- protect the institute’s reputation by ensuring the personal data entrusted to us is processed in accordance with data subjects’ rights
- protect the institutes from risks of personal data breaches and other breaches of data protection law.
All employees are responsible for ensuring that all institute’s staff within their area of responsibility comply with this policy and should implement appropriate practices, processes, controls and training to ensure that compliance.
Personal data protection principles
Those principles require personal data to be:
- Processed lawfully, fairly and in a transparent manner (Lawfulness, fairness and transparency). 2. collected only for specified, explicit and legitimate purposes and not further processed in a manner incompatible with those purposes (Purpose limitation).
- Adequate, relevant and limited to what is necessary in relation to the purposes for which it is Processed (Data minimization).
- Accurate and where necessary kept up to date (Accuracy).
- Not kept in a form which permits identification of data subjects for longer than is necessary for the purposes for which the personal data is processed (Storage limitation).
- Processed in a manner that ensures its security, using appropriate technical and organizational measures to protect against unauthorized or unlawful processing and against accidental loss, destruction or damage (Security,integrity and confidentiality).