Your Company is made up of not only people but also a massive amount of information: confidential information on staff, customers or private individuals, all contained in documents. What is more, those documents may also include vital information going to the essence of your company, the people associated with your company, the know-how and the way your business is done. Such information needs to be archived and protected in the most appropriate way.
You need that information to be safe, but at the same time to be easily retrievable whenever and until you need it. In-house archiving can seem like the most obvious solution, but it can fall short of your needs.
Based on the current legislation concerning the financial sector and the export regulations of CSSF, Circulaire 05/178, valid as of 1 April 2004, all companies belonging to the financial sector such as banks and financial institutions can only use the service of those providers who have been approved for the financial sector.
In accordance with the export conditions of the CSSF, "no confidential information may be passed on to third parties unless they have PSF status", and "confidential details may only be stored with companies who are PSF-accredited".
Since Streff is a company dedicated to and specialised in archiving, document scanning and the destruction of all kinds of data carriers for all sorts of businesses including those from the financial sector, we have obtained the required authorisation of an "agent de communication à la clientèle" from the Luxembourg Ministry of Finance for all our business activities.
All Streff employees are bound by the special safety requirements and conditions laid down by the CSSF to ensure that you receive the highest possible standard of service and safety.
Vast quantities of information are recorded and processed every day. Every company, organisation and individual is understandably interested in protecting this information against unauthorised access.
The law protects the basic rights and liberties of individuals in the processing of personal details, and ensures that the legally protected interests of legal persons are observed.
It is particularly important to fully understand which processes fall under the term “processing”.
The processing of personal data is defined as any process or series of processes carried out with or without automatic procedures in association with the data, e.g.:The processor is described in law as the natural or legal person, public authority, centre or other facility that processes data for the account of the person responsible for the processing.
The person responsible for the process is defined as the natural or legal person, the public authority, the centre or any other facility that, alone or together, determines the purpose and means of the processing of personal details.
The law states that personal details constitute information on a specific or definable natural or legal person, irrespective of type and regardless of the data carrier.
A natural or legal person is considered definable if he/she can be identified directly or indirectly, especially by means of an identifying number or one or more specific features of his/her physical, physiological, genetic, mental, cultural, social or economic identity.