data protection policy

---

1. Introduction

This Data Protection Policy outlines the principles and practices of Andromida Software Systems, software developers of the GoPayroll Software Suite, a company operating in Malta, in relation to the collection, processing, and protection of personal data. This policy is designed to comply with the General Data Protection Regulation (GDPR) and any other applicable data protection laws in Malta.

 2. Scope

This policy applies to all employees, contractors, and third parties who process personal data on behalf of Andromida Software Systems.

3. Definitions

Personal Data: Any information related to an identified or identifiable natural person.

Data Subject: The individual to whom the personal data pertains.

Processing: Any operation performed on personal data, such as collection, recording, organization, structuring, storage, retrieval, consultation, use, disclosure, dissemination, erasure, or destruction.

 4. Data Protection Principles

4.1. Lawfulness, Fairness, and Transparency

Personal data will be processed lawfully, fairly, and transparently in relation to the data subject.

 4.2. Purpose Limitation

Personal data will be collected for specified, explicit, and legitimate purposes, and will not be further processed in a manner that is incompatible with those purposes.

4.3. Data Minimization

Only the minimum amount of personal data necessary for the intended purpose will be collected and processed.

 4.4. Accuracy

Reasonable steps will be taken to ensure that personal data is accurate and, where necessary, kept up to date.

 4.5. Storage Limitation

Personal data will be stored for no longer than is necessary for the purposes for which it is processed.

4.6. Integrity and Confidentiality

Appropriate technical and organizational measures will be implemented to ensure the security of personal data.

4.7. Accountability

Andromida Software Systems is responsible for and able to demonstrate compliance with the GDPR principles.

5. Data Subject Rights

Data subjects have the following rights:

- The right to be informed

- The right of access

- The right to rectification

- The right to erasure

- The right to restrict processing

- The right to data portability

- The right to object

- Rights in relation to automated decision making and profiling

 6. Data Security

Andromida Software Systems will implement appropriate technical and organizational measures to ensure the security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

7. Third-Party Processors

Before engaging third-party processors, Andromida Software Systems will conduct due diligence to ensure they comply with data protection regulations.

8. Training and Awareness

Employees and contractors will receive training on data protection policies and procedures, and will be made aware of their responsibilities.

9. Policy Review

This Data Protection Policy will be reviewed and updated as necessary to ensure ongoing compliance with data protection laws and best practices.

This policy is applicable for all GoPayroll modules in the GoPayroll Software Suite developed by Andromida Software Systems. 

This policy was issued on 13 April 2023.