GDPR and Data Protection Act

The EU General Data Protection Regulation (‘GDPR’) took effect on 25 May 2018. The GDPR affects the rights of individuals to access the information companies hold about them, the obligations for better data management for businesses and overall increased accountability for data controllers and processors.

In Mauritius, the local data protection laws have also been brought up to speed by the coming into force in January 2018 of the Data Protection Act 2017 (‘DPA’), thereby replacing its 2004 predecessor. The new local law is aligned with GDPR requirements and is enforced by the Data Protection Office. In addition, Mauritius is expecting to receive an “adequacy status” from the European Commission in respect of its data protection laws any time soon.

Objectives

Our objectives remain:

  • the safeguard of information and personal data of our clients
  • the reinforcement of security over data portability and transfer
  • the continuous respect of data confidentiality
  • enhanced data security through streamlined processes
  • the review and upgrade of our existing systems and software accordingly
  • compliance with prevailing laws and regulations, both locally and internationally

Our Update

We wish to reiterate our promise and commitment to our clients to adhere to strict codes of confidentiality and ensure that adequate levels of security regarding data management are in place.

Moreover, our core team is working effortlessly to ensure compliance with the new requirements under the GDPR and the DPA.

To be more transparent on the use of your personal data and to comply with the requirements of the GDPR and the DPA, we are updating our Privacy Policy to make it easier for you to understand what information we collect from you, why we collect it and how we store and use it, amongst other things.

Queries

You may address your queries to us on [email protected] and we look forward to continuing our business relationship with you.