This Confidentiality and Security Policy outlines how SynPlexa Kft. (“the Company”) ensures the protection, integrity, and confidentiality of information in accordance with applicable European Union legislation, including the General Data Protection Regulation (GDPR) (EU) 2016/679.
1. Scope of Protection
The Company is committed to safeguarding all data processed through its platform, including personal data, business information, and user-generated content. Protection applies to data in all forms, including electronic and stored data.
2. Legal Basis and Compliance
All data processing and security measures are implemented in compliance with:
General Data Protection Regulation (GDPR) (EU) 2016/679
Applicable national data protection laws within the European Union
Industry-standard security frameworks and best practices
3. Technical and Organizational Measures
The Company applies appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
Encryption of data in transit using SSL/HTTPS protocols
Restricted access to data based on role and necessity (access control)
Regular monitoring, testing, and evaluation of system vulnerabilities
Secure data storage and infrastructure protection
Incident detection and response procedures
4. Confidentiality Obligations
All employees, contractors, and partners of the Company are bound by strict confidentiality obligations. Access to sensitive data is limited only to individuals who require such access for legitimate operational purposes. Unauthorized disclosure, access, or misuse of confidential information is strictly prohibited and may result in legal consequences.
5. User Responsibilities
Users are responsible for maintaining the confidentiality of their account credentials. Any activity conducted under a user account is considered the responsibility of the account holder.
Users must notify the Company immediately in case of suspected unauthorized access or security breach.
6. Data Breach Response
In the event of a personal data breach, the Company will:
Assess and contain the incident without undue delay
Notify competent supervisory authorities in accordance with EU law
Inform affected users where required
All incidents are handled in accordance with GDPR requirements.
7. Limitations of Liability
While the Company implements high-level security measures, no system can guarantee absolute security. The Company shall not be held liable for breaches resulting from factors beyond its reasonable control, including user negligence or third-party actions.
8. Contact
For any questions regarding this policy or to report a security concern, please contact:
synplexa@gmail.com