At MIVB Information Technology Inc., we embrace GDPR principles and take responsibility for providing you with uniform and compliant standards for personal data privacy in our role as providing HR Chronicle on Cloud as S-aa-S (Software as a Service).
We would like to inform you about our initiatives for accountability and GDPR readiness for 25 May 2018.
We focus on Privacy through Design & Default, Data Portability, Data Subject Rights like the Right to be Forgotten, throughout the organization.
Based on our current compliance we are able to further accelerate our GDPR readiness through the benefit of our comprehensive knowledge of existing personal data privacy laws, including data breach procedures, and our top-tier data security experience.
Our business operation model also contributes to our data privacy approach and GDPR compliance.
We feel confident about our existing approach for “appropriate technical and organizational measures to ensure a level of security”, applying “legal grounds for processing personal data” required by current privacy laws and GDPR.
All the data of HR Chronicle is created by the particular user of HR Chronicle Cloud Service (Client of HR Chronicle), which buys the service, which is usually the Organizations HR Department / Admin Department, which is known as Data Processor. Usually data will be of the employees, or contractors of the client.
HR Chronicle users are able to remove, update, delete personal information of their employees, without HR Chronicle’s direct involvement.
HR Chronicle uses a technology called “cookies” to store session information. We use both session ID cookies which are non-persistent cookies. A session ID cookie expires when you close your browser. We use Session Cookies to track your Login status. This cookie is only ever transmitted over HTTPS. Click here for more information on cookies, including how to disable them. If you disable cookies, you cannot use our HR Chronicle Cloud Service.
We gather certain information automatically and store it in log files against each HR Chronicle Cloud Instance. This information includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, PC Name. We use this information, for logging purposes and detecting unauthorized access to the account and for auditing purposes.