Date Protection Policy

Data Protection Policy

Purpose The purpose of this Data Protection Policy is to outline Safehands Ltd.’s commitment to protecting personal data in compliance with the Data Protection Act 2017 of Mauritius. This policy ensures that all personal information is handled responsibly, securely, and transparently, maintaining the trust of employees, clients, and stakeholders.

Safehands Ltd is registered with the Data Protection Office (DPO) and is obliged under current regulations to maintain confidentiality of information.

Scope

This policy applies to all employees, contractors, and stakeholders of Safehands Ltd. It governs all aspects of data collection, processing, storage, and disposal, including but not limited to:

Employee records

Client information

Vendor and third-party data

Marketing and communication databases

Compliance with Data Protection Act 2017Safehands Ltd. is registered with the Data Protection Office (DPO) of Mauritius, as mandated by the Data Protection Act 2017. As a registered entity, the company is obliged to:

Maintain the confidentiality of all personal data handled.

Ensure that data is processed lawfully, fairly, and transparently.

Collect data only for specified, legitimate purposes and limit processing to those purposes.

Ensure data accuracy and take reasonable steps to keep it up-to-date.

Store data securely to prevent unauthorized access, loss, or destruction.

Retain data only for as long as necessary to fulfill the purposes for which it was collected.

Respect the rights of data subjects, including the right to access, correct, or delete their data

Responsibilities

Employees

Handle personal data responsibly and in accordance with this policy.

Report any suspected data breaches to the Data Protection Officer immediately.

Management

Ensure compliance with data protection laws and this policy across all operations.

Raise awareness to employees on data protection practices.

Data Protection Officer (DPO)

Oversee the implementation of data protection measures.

Serve as the primary point of contact for data subjects and regulatory authorities.

Investigate and address data breaches promptly.

Data Protection Measures

Security Controls

Implement technical measures, such as encryption and access controls, to safeguard data.

Training and Awareness

Conduct regular training for employees on data protection regulations and best practices.

Provide updates on changes to data protection laws and company policies.

Incident Response

Establish procedures for detecting, reporting, and responding to data breaches.

Notify the Data Protection Office and affected data subjects of breaches, as required by law.

Rights of Data Subjects Safehands Ltd. respects the rights of data subjects, including:

Access: The right to request access to personal data held by the company.

Correction: The right to request corrections to inaccurate or incomplete data.

Deletion: The right to request the deletion of personal data under certain conditions.

Objection: The right to object to data processing for specific purposes.

Requests can be submitted via email to admin@safehandsltd.net.

ConfidentialitySafehands Ltd. is committed to maintaining the confidentiality of all personal data. Access to data is restricted to authorized personnel, and measures are in place to prevent unauthorized sharing or misuse.

Policy Review This policy will be reviewed as necessary to ensure compliance with the Data Protection Act 2017 and other applicable regulations.

Approval This Data Protection Policy has been approved by Aneesh Toolsee (Director) on 6-Jan-25.