GDPR: Esokia is committed to protecting the data of companies and their customers

The General Data Protection Regulation (GDPR) came into force on May 25, 2018. It is a legal obligation that must be respected and implemented by all companies. Consequently, at Esokia, we have put in place all the security measures required to ensure the maximum security of the personal data entrusted by our customers, therefore by cascading effect, those of their own customers. In a process of increased responsibility, we implement all appropriate actions to stay up to date with changes to these regulations.

Esokia is committed to protecting the personal data of its customers

Esokia has several distinct and complementary objectives, designed to ensure the physical and logical security of all the components of our services and the data processed by our teams :

• Be permanently compliant with legal and contractual requirements, relying in particular on our business expertise, on standards (in particular ISO 27001) and good practices in force (including the ITIL repository) ;
• Align our policy and processes with the best practices observed, as well as the recognized standards in terms of information security (in particular the ISO2700x standards) ;
• Work constantly to remain in compliance with customer security requirements, particularly in terms of data protection ;
• Create and maintain a climate of trust and communicate on security both internally and externally with customers, prospects and organizations ;
• Ensure that information security risks are identified and adequately addressed ;
• Make the safety management system easier to audit ;
• Optimize the means implemented to guarantee information security.

 

Our business expertise: an additional guarantee for customers

Following instructions from the data controller, Esokia uses all its skills and abilities to process personal data within the framework of these services such as :

• IT infrastructure hosting and outsourcing ;
• Software integration ;
• IT security ;
• Computer services and engineering ;
• Digital marketing or communication activity.

 

Here are some examples and recommendations from Esokia related to key GDPR requirements :

Management of cookie consent : we recommend managing cookies using the “One trust” tool. In the form of a banner, the consent manager appears when the page of the website is opened and asks the visitor for his consent for the use of his private information.

Management of consent on personal data : it ensures that the user consents to the use of his personal information and comes in several forms :

• The Footer ;
• The registration form ;
• Personal space.

 

Esokia complies with French and European GDPR directives

As a collector of personal data, Esokia is considered to be a subcontractor, in accordance with the definition of article 4 of the European regulation.

Thus, even if the production centers of Esokia (less than 250 employees) are established in Mauritius and Madagascar, therefore outside the European Union; we apply article 3 of the European regulation, that states « processing activities are related to the provision of goods or services to the people concerned in the EU.»