Information/Data Security
HEC recognize existing and providing services on the traditional, ancestral and unceded lands of the Coast Salish Nation
HEC is commitment to data protection and our related policy details how we safeguard client data and adhere to client data protection principles listed below:
1. Upholding data subjects' rights2. Training staff, collaborators and partners on data protection best practices3. Implementing adequate technical and organizational security measures to prevent unauthorized processing and safeguard client data4. Obtaining client data to fulfill contractual obligations without further incompatible processing5. Ensuring fair and lawful data collection and use6. Storing client data on secure server with prior anonymization/de-identification procedures, a systematic deployment of 128-bit encryption, and a unique password protection for each file, accessible only to authorized personnel7. Processing client data solely to meet operational needs or legal requirements8. Definition of an appropriate data retention period varying according to the needs between 3 and 6 months with automatic deletion once the project is completed9. Addressing data protection queries promptly and efficiently10. Regularly reviewing and updating data protection procedures for change adaptation At HEC, we prioritize our clients confidentiality and we consistently take appropriate steps to safeguard their personal information and privacy. For more information, please refer to our Privacy Policy and Non-Disclosure Agreement.
1. Upholding data subjects' rights2. Training staff, collaborators and partners on data protection best practices3. Implementing adequate technical and organizational security measures to prevent unauthorized processing and safeguard client data4. Obtaining client data to fulfill contractual obligations without further incompatible processing5. Ensuring fair and lawful data collection and use6. Storing client data on secure server with prior anonymization/de-identification procedures, a systematic deployment of 128-bit encryption, and a unique password protection for each file, accessible only to authorized personnel7. Processing client data solely to meet operational needs or legal requirements8. Definition of an appropriate data retention period varying according to the needs between 3 and 6 months with automatic deletion once the project is completed9. Addressing data protection queries promptly and efficiently10. Regularly reviewing and updating data protection procedures for change adaptation At HEC, we prioritize our clients confidentiality and we consistently take appropriate steps to safeguard their personal information and privacy. For more information, please refer to our Privacy Policy and Non-Disclosure Agreement.