1. Guiding Principles
- Lawfulness, fairness and transparency of processing.
- Purpose limitation and minimisation of data collected.
- Accuracy, integrity and confidentiality.
- Documented accountability and full traceability of processing.
2. Data Protection Officer
SOLVIX has appointed an independent Data Protection Officer (DPO), reachable at dpo@solvix.com. The DPO oversees regulatory compliance, handles data subject requests and acts as the contact point with supervisory authorities.
3. Sub-processors and Transfers
SOLVIX rigorously selects its sub-processors and only engages partners that provide contractual guarantees equivalent to the GDPR. Any transfer outside the European Union takes place exclusively to countries deemed adequate, or under Standard Contractual Clauses supplemented by additional technical measures.
4. Incident Notification
In the event of a data breach likely to result in a risk to the rights and freedoms of data subjects, SOLVIX undertakes to notify the competent supervisory authority within 72 hours and to inform the affected users without undue delay.
5. Records of Processing
SOLVIX maintains a comprehensive record of processing activities in accordance with Article 30 of the GDPR. A copy may be provided on reasoned request from competent authorities or from clients having signed a Data Processing Agreement (DPA) with SOLVIX.
SOLVIX is committed to upholding the highest standards of transparency, security and regulatory compliance. Our policies are continuously audited and aligned with international frameworks including ISO 27001, SOC 2 Type II, GDPR, eIDAS and ENISA guidelines.