GDPR Policy

GDPR Guidelines: The General Data Protection Regulation (GDPR) outlines specific regulations that marketing and advertising agencies must follow when managing personal data. Below are key guidelines applicable to these agencies:

Legal Basis for Data Processing:

MarkRes Media operates under a lawful basis for processing personal data, which may involve obtaining consent from individuals or demonstrating a legitimate interest in processing the data.

Privacy Notices:

MarkRes Media provides transparent and easily understandable privacy notices to individuals regarding the use of their personal data. This includes details on the purposes of processing, the legal basis for processing, and the retention period for the data.

Data Minimization:

MarkRes Media collects and processes only the necessary personal data required for specific purposes. We prioritize avoiding excessive data collection and ensure that the data collected is relevant and adequate for the intended processing activities.

Consent:

MarkRes Media ensures that consent obtained for data processing is freely given, specific, informed, and unambiguous. Individuals have the option to withdraw their consent at any time.

Right to Access:

Individuals have the right to request access to their personal data held by the agency. MarkRes Media is obligated to provide the requested information along with additional relevant details, such as the purposes of processing and recipients of the data.

Data Security:

MarkRes Media implements appropriate technical and organizational measures to safeguard personal data against unauthorized access, accidental loss, or destruction. This includes robust protection measures to ensure data security.

Data Processing Agreements:

Before commencing any ordered campaign or program, MarkRes Media signs a Data Processing Agreement with the client. This agreement outlines the data protection obligations that MarkRes Media must adhere to during the processing of personal data.

Data Breach Notification:

In the event of a personal data breach, MarkRes Media promptly notifies the relevant supervisory authority within 72 hours of becoming aware of the breach, unless the breach poses minimal risk to individuals’ rights and freedoms.

Data Protection Impact Assessments (DPIAs):

MarkRes Media conducts Data Protection Impact Assessments for processing activities that may pose a high risk to individuals’ rights and freedoms. These assessments help identify and mitigate any risks associated with the processing of personal data.

Privacy by Design and Default:

MarkRes Media incorporates privacy by design and default principles into its operations, ensuring that data protection and privacy considerations are integrated from the outset of any project or process. This includes minimizing data collection, retaining data for necessary periods only, and ensuring robust data security measures are in place.