Is client scoped data handled that can be classfied as personally identifiable financial information under the Gramm-Leach-Bliley Act (GBLA)?

No, as QR Planet renders no financial services, especially such requiring us to fall under the rules of the GBLA.

Last update 5 days ago

Is there a documented Records Retention Policy that ensures Personal Information to be retained for no longer than necessary?

QR Planet is fully GDPR complient and uses a records retention policy that doesn't allow for Personal Information to be retained longer than necessary.

Last update 3 days ago

Are there documented policies in place to ensure that processing client scoped data is limited, and in compliance with applicable law?

QR Planet is fully GDPR complient. Access, transmission, processing, disclosure, and retention of client scoped data is in compliance with applicable law.

Last update 3 days ago

Is there a documented policy limiting the Personal Information collected and its use to the necessary minimum?

QR Planet is fully GDPR complient and has implemented a data protection policy that enforces all necessary collection limitations for Personal Information.

Last update 3 days ago

For client scoped data, is personal information provided to the organization directly by the client?

Personal Information is provided directly by our clients. The collection, useage, processing and retention of such data happens in full complience with the GDPR

Last update 6 days ago

Is personal information collected directly from an individual by QR Planet on behalf of the client?

Yes, in full compliance with the GDPR (https://qrplanet.com/gdpr), also see https://qrplanet.com/privacy.

Last update 6 days ago

Is there a documented Privacy Policy regulating the protection of information handled on behalf of clients?

The protection of all information collected, transmitted, processed, disclosed, or maintained by QR Planet on behalf of clients is ensured.

Last update 3 days ago

Is documentation of data flows and data inventories maintained for client scoped data based on data or information classification?

This practice aligns with data governance, security, and privacy standards QR Planet adheres to, especially when handling sensitive or classified client data.

Last update 5 days ago

Is there a designated organizational structure or function responsible for data privacy or data protection as it relates to client scoped data?

No. As a small LLC, all data privacy and protection issues are continuously monitored by management during the course of daily business.

Last update 5 days ago

Does QR Planet handle any client scoped data that can be classified as personal information or data of individuals?

The handling of client scoped data that includes any such classification happens in full compliance with the GDPR. This is reviewed by Data Protection Officers.

Last update 5 days ago

Do you have a process for ensuring the disposal of temporary files that have been created containing PII?

QR Planet is fully GDPR complient and ensures the secure and timely disposal of all temporary files containing Personally Identifiable Information.

Last update 6 days ago

Is client scoped data aggregated, appended, or modeled using data analytics?

No. QR Planet does not use data analytics for such purposes.

Last update 6 days ago

Are individuals informed about their rights concerning their personal data which is maintained by QR Planet?

Yes. Our customers are informed about their rights to access, review, update, correct and limit disclosure or transmission of their personal information stored.

Last update 6 days ago

Are policies and procedures in place to address third party privacy obligations including limitations on disclosure and use of client Scoped Data?

Data processing agreements defining scope, purpose and limitatios of data processing activities are established with third parties.

Last update 3 days ago

Do fourth parties have access to, receive, or process client scoped data?

Yes. If necessary, subcontractors, sub-processors or sub-service organizations may have access to, receive of process client scoped data.

Last update 6 days ago

Is there a documented data protection program with safeguards for the protection of client scoped data?

QR Planet is fully GDPR complient. Client scoped data is protected by documented administrative, technical, physical, and environmental safeguards.

Last update 6 days ago

Is there a data privacy or data protection function?

QR Planet is fully GDPR complient. Our management takes over the role as DPOs and maintains compliance, enforcement and monitoring procedures.

Last update 6 days ago

Are there policies and processes in place to address privacy inquiries, complaints and disputes?

As a small LLC, our management takes over the role as DPOs (Data Protection Officers) and handles all privacy complaints and disputes.

Last update 3 days ago

Has QR Planet registered as a telemarketer under any state regulation?

Not applicable - QR Planet does not rely on telemarketing.

Last update 6 days ago