Your personal data are processed in such a way as to guarantee a level of security appropriate to the risk, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
In order to ensure the security of your data, the ITM applies to all of its activities a set of policies (i.e. General Information Security of the Luxembourg State (ANSSI) and minimum standards decided upon internally. These are regularly updated so that they comply with the regulations. The ITM takes the necessary technical and organisational measures (policies and procedures, IT security, etc.) to guarantee the confidentiality and integrity of your personal data and of the processing procedures.
The ITM implements adequate technical and organisational measures to guarantee the security and confidentiality of the data subject to such processing.
ITM staff are required to keep secret any confidential information received in or during the performance of their duties and each member of staff has access only to the data they need for fulfilment of the tasks assigned to them.
The control and supervision of the processing operations implemented by the ITM are exercised by the monitoring authorities established by Article 51 of the GDPR and by Article 56 of the Law of 1 August 2018 on the Organisation of the National Commission for Data Protection and the General Data Protection Regime.