GDPR Policy


babsLAB is committed to ensuring the privacy and security of personal data processed by our organization. This GDPR Policy outlines our practices and procedures for compliance with the General Data Protection Regulation (GDPR).

Data Protection Principles

We adhere to the following GDPR data protection principles:

✅ Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner. 

✅ Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it further in a manner incompatible with those purposes.  

✅ Data Minimization: We ensure that personal data we process is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.  

✅ Accuracy: We take reasonable steps to ensure that personal data is accurate and kept up to date.

✅ Storage Limitation: We store personal data for a limited period, ensuring it is deleted or anonymized when no longer necessary.  

✅ Integrity and Confidentiality: We process personal data securely, maintaining its integrity and confidentiality.

Data Subjects' Rights

We respect individuals' rights under the GDPR, including the right to:

✅ Access: Individuals can request access to their personal data. 

✅ Rectification: Individuals can request corrections to inaccurate or incomplete personal data. 

✅ Erasure: Individuals can request the deletion of their personal data under certain circumstances. 

✅ Data Portability: Individuals can request their personal data in a structured, commonly used, and machine-readable format.

✅ Objection: Individuals can object to the processing of their personal data for specific purposes.

Lawful Basis for Processing

We process personal data based on one or more lawful bases, including consent, contractual necessity, legal obligations, vital interests, public task, and legitimate interests.

Data Security

We implement appropriate technical and organizational measures to ensure the security and confidentiality of personal data, protecting it against unauthorized or unlawful processing, accidental loss, destruction, or damage.

Data Breach Response

In the event of a personal data breach, we have procedures in place to detect, report, and investigate breaches. We will notify the supervisory authority and data subjects affected by the breach, where required.

Data Protection Officer (DPO)

We have appointed an in-house Data Protection Officer responsible for overseeing GDPR compliance. You can contact the DPO at admin@babslab.com for any data protection concerns.

Compliance and Updates

We regularly review and update our GDPR compliance practices to ensure ongoing adherence to the regulation.