At Matech CO., we recognize that privacy is a fundamental right. As an organization certified in ISO/IEC 27701, we are committed to the highest standards of protection for Personal Identifiable Information (PII). This policy outlines our commitment to managing privacy risks and maintaining the trust of our clients, employees, and partners.
Our PIMS is integrated with our ISO 27001 Information Security Management System to ensure that privacy is “by design and by default” in all our software development and technical operations.
Privacy is a shared responsibility at Matech CO. Every employee and contractor is trained on privacy protocols and is required to adhere to our internal PIMS procedures. Our leadership team regularly reviews this policy to ensure it evolves with the changing regulatory landscape and technological advancements.
Our PIMS is integrated with our ISO 27001 Information Security Management System to ensure that privacy is “by design and by default” in all our software development and technical operations.
Our Privacy Commitments:
- Lawfulness, Fairness, and Transparency: We process PII only on valid legal bases and in a transparent manner, ensuring that data subjects and clients are informed about how their information is used.
- Purpose Limitation: We collect and process PII only for specified, explicit, and legitimate business purposes or as directed by our clients in our role as a PII Processor.
- Data Minimization: We ensure that the PII we process is adequate, relevant, and limited to what is necessary for the intended purposes.
- Accuracy and Integrity: We implement controls to keep PII accurate and up-to-date, providing mechanisms for correction where applicable.
- Storage Limitation: PII is retained only for as long as necessary to fulfill the purposes for which it was collected, or as required by legal and contractual obligations.
- Confidentiality and Security: We apply rigorous technical and organizational measures to protect PII against unauthorized or unlawful processing and accidental loss, destruction, or damage.
- Accountability: We take full responsibility for our privacy practices, maintaining detailed documentation and regular audits to demonstrate compliance with ISO 27701 and applicable global data protection regulations (such as GDPR or the Pakistan Personal Data Protection Bill).
Governance and Continuous Improvement
Privacy is a shared responsibility at Matech CO. Every employee and contractor is trained on privacy protocols and is required to adhere to our internal PIMS procedures. Our leadership team regularly reviews this policy to ensure it evolves with the changing regulatory landscape and technological advancements.