Dijit, in compliance with the General Data Protection Regulation (GDPR) and applicable data protection regulations, assumes the role of "processor" when processing personal data on behalf of the Client. This occurs when the Client uses the Software and incorporates personal data of third parties, for which the Client is responsible.
As data processor, Dijit undertakes to:
- Process personal data only for the correct execution of the Service.
- Do not transfer data outside the Union
European Union or to a country that the European Commission considers does not guarantee a sufficient level of protection.
- Implement high security standards to offer a high level of protection to our services.
- Promptly notify any data security breach.
- Help the Client meet its regulatory obligations by providing appropriate documentation about our services.
- Ensure that all persons authorized to process personal data within the organization have agreed to respect confidentiality.
- Delete all personal data once the provision of services has ended, as well as existing copies, unless current regulations require the conservation of personal data. In this case, the data will be kept securely and only to address potential liabilities.
5.1. Security measures
Dijit understands the importance of implementing appropriate security measures and is committed to maintaining the highest security standards, taking into account the state of the art, software costs, and the nature, scope, context and purposes of the processing. , as well as the risks to the rights and freedoms of natural persons. Therefore, Dijit applies appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
(i) Guarantee the confidentiality, integrity, availability and permanent resilience of data processing systems and services.
(ii) Restore availability and access to personal data quickly in the event of a physical or technical incident.
(iii) Carry out regular verifications, evaluations and assessments of the effectiveness of the technical and organizational measures implemented to ensure the security of data processing.
5.2. Responsibility for Personal Data Stored in the Software
The Client is solely responsible for the personal data stored in the Software. This includes any third party data that the Client may incorporate. The Client undertakes to process this data in accordance with current regulations on data protection and to hold Dijit harmless from any breach in this regard.
Dijit does not access or use this data, unless necessary for the execution of the Service and within its technical limitations. Any data processing carried out by Dijit in relation to the Client's data will be carried out within the framework of the provision of services, previously accepted by the Client when contracting the Service. In what cases does Dijit access the data stored in the Software?
Dijit will only access Customer data in the following circumstances:
1) To guarantee the correct execution of the service and improve Customer service. In these cases, access to the Client's data is carried out under strict permissions and security measures. For example, when Customer contacts Dijit support, we may need to access Customer's account information or, at Customer's express request, data stored in the Software to identify and resolve problems or assist Customer in use of the Software.
2) To provide the service when data processing is necessary for the optimal functioning of the service. Some of the services offered by Dijit within the Software require the processing of certain Customer data. For example, the service that allows the movements of the Client's bank accounts to be incorporated into the Software requires the automated and confidential use of the Client's credentials. This use must be activated and authorized by the Client, who determines its scope.
5.3. Tracking technologies
The Client can always consult dijit's cookie policy through the Site
https://www.dijit.app/politica-de-privacidad/