PRIVACY & GDPR
The new European regulation on the protection of personal data (GDPR) requires us to review our privacy notices in order to make our stakeholders more aware of the purposes and modalities related to the processing of their personal data.
We consider our stakeholders’ personal data as a core value to be safeguarded, and we wish to establish a relationship with them based on full transparency and awareness with respect to the purposes and modalities we use when processing their data.
In order to ensure that our information is clear, we have drawn up some ad-hoc documents (privacy notices), dedicated to each specific type of relationship that might be established.
We invite you to examine the privacy notice relevant to you, in order to get aware, in detail, of how we process your personal data.
The documents uploaded on this website are only aimed at providing information. In case it might be necessary to collect your consent, due to the nature of the personal data processed, we will perform this activity with different modalities and channels.
For any question you may have or if you wish to exercise a right in respect of the processing of your personal data, the Data Protection Officer can be contacted:
by e-mail at: firstname.lastname@example.org
by traditional letter at: PT Asuransi Jiwa Generali Indonesia, Generali Tower Lantai 7, Gran Rubina Business Park, Kawasan Rasuna Epicentrum, Jl. H.R. Rasuna Said Kavling C-22, Jakarta, Indonesia.
WHAT IS THE PERSONAL DATA BREACH?
The term Personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed. This disclosure may occur, by way of example, for the following reasons:
- accidental loss: for example, personal data breach caused by loss of a USB flash drive containing personal data;
- theft: for example, personal data breach caused by theft of a notebook containing personal data;
- corporate infidelity: for example, personal data breach caused by an internal person who, having authorization to access personal data, produces a copy to be distributed in a public environment;
- unauthorized access: for example, personal data breach caused by unauthorized access to IT systems with subsequent disclosure of the acquired personal data information.
The new European regulation on the protection of personal data (GDPR) provides for, upon the occurrence of certain circumstances, the obligation to notify the breach to the competent Supervisory Authority no later than 72 hours from the awareness as well as the communication of such breach to the impacted data subjects.
With the aim to be compliant with the above indicated regulatory provisions and to ensure the protection of our stakeholders’ personal data, we have created the following section that enable you to report any suspected personal data breach.
We kindly ask you to fill the following section, selecting your profile typology (customer, employee, other, broker, outsourcer)