GDPR: OUR SOLUTIONS COMPLY WITH EUROPEAN LAW
At ACTUASYS we comply with the European and Portuguese laws and what is consider to be good practice.
The European law about data protection (GDPR) addresses the processing of special categories of personal data and clarifies that it’s legal to do so when is necessary for the purposes of carrying out the obligations and exercising specific rights of the controller or of the data subject in the field of employment.
The General Data Protection Regulation doesn’t specify what rules the employer must comply when processing the data, including biometric data.
At ACTUASYS we comply with the European and Portuguese laws and what is consider to be good practice. When registering users at our terminals, a digital representation of biometric data (which is not equivalent or substitute to fingerprint) is generated which operates only on the company system and cannot be used to reproduce the original biometric data. This is because our biometric system does not use the technology of digitization of the image obtained, but the coding of the collected data.
And how does it do that? Through an algorithmization process that numerically represents the captured biometric characteristics, which doesn’t allow to reverse the data and, therefore, it is not possible to decode and reproduce the image of the characteristics.
In short, biometric data processing by our terminals and systems allows only the identification of the employee in our system for attendance and access control purposes.
As an additional security and data protection measure, all recorded information, including data at rest and in transit, on our terminals and software is encrypted, making it undecipherable to third parties.
In order to facilitate the storage of adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (“data minimisation”) and during the legal and necessary timeframe, registration management mechanisms were also implemented to allow automatic deletion processes of personal data and biometric data.
Our Maintenance R&D team is responsible for these developments and works daily to ensure that our products and services are up to date with the international and national landscape, thus meeting the needs of our customers.