DNT Corporate Services Data Security Policy

1. Introduction

At DNT Corporate Services, safeguarding the privacy and security of our clients’ data is a top priority. This Data Security Policy outlines the measures we take to ensure that personal, financial, and business information is protected from unauthorized access, disclosure, alteration, and destruction. Our security practices comply with applicable regulations, including the General Data Protection Regulation (GDPR).

2. Scope

This policy applies to all employees, contractors, and third-party service providers who handle or process data on behalf of DNT Corporate Services. It covers all client information, including personal identification details, financial data, and any other confidential business information.

3. Data Collection and Storage

We collect and store data provided by clients to deliver our accounting, financial, and advisory services. All collected data is stored securely using encryption and other industry-standard security measures. We ensure that data is stored on secure servers and that only authorized personnel have access to sensitive information.

4. Security Measures

To ensure the confidentiality and integrity of client data, we implement the following security practices:

A. Encryption

• All sensitive data, including financial and personal information, is encrypted both at rest and in transit using strong encryption protocols. This ensures that even if data is intercepted or accessed without permission, it remains unreadable.

B. Access Control

• We implement strict access control measures to ensure that only authorized personnel have access to client data. Access is granted based on job role and responsibility, and it is continuously reviewed to ensure compliance with security standards.
• Multi-factor authentication (MFA) is required for access to any sensitive data and systems.

C. Secure Communication

• All communication between clients and our team is conducted over secure, encrypted channels, such as SSL/TLS protocols. This includes email exchanges, file transfers, and access to our client portal.

D. Data Anonymization and Minimization

• Whenever possible, data is anonymized to protect client privacy. Additionally, we adhere to data minimization principles, collecting only the information necessary to provide our services.

E. Client Portal Security

• Our custom client portal is protected by robust security features, including encryption, role-based access controls, and activity logging. Clients can upload and access their financial data with confidence, knowing that their information is secure.

5. Data Backup and Disaster Recovery

• We maintain regular backups of all critical data to ensure that no information is lost in the event of a hardware failure, cyber attack, or other incident. Backups are stored in secure, offsite locations and are encrypted to prevent unauthorized access.
• Our disaster recovery plan ensures that, in the case of a data breach or system failure, data can be restored quickly and securely with minimal downtime.

6. Employee Training

• All employees at DNT Corporate Services receive regular training on data protection, privacy regulations, and cybersecurity best practices. This ensures that every member of our team understands the importance of data security and adheres to our policies.

7. Third-Party Providers

• We work with trusted third-party service providers (e.g., cloud hosting, payment processors) who meet our security standards and comply with applicable regulations. We maintain Data Processing Agreements (DPAs) with all third-party providers to ensure they are committed to protecting client data.
• Regular audits of third-party providers are conducted to ensure compliance with security policies and standards.

8. Monitoring and Incident Response

• We continuously monitor our systems for any suspicious activity or security vulnerabilities. If a potential breach or security issue is detected, our incident response team is immediately activated to investigate and resolve the situation.
• In the event of a data breach, we will promptly notify affected clients in compliance with GDPR and other applicable regulations.

9. Client Rights and Data Requests

• Clients have the right to access, correct, or delete their personal data at any time. To exercise these rights, clients can contact us at dntoffice7@gmail.com. We will respond to all data requests promptly and in accordance with GDPR requirements.

10. Review and Updates

• This Data Security Policy is regularly reviewed and updated to ensure compliance with evolving security standards, industry practices, and regulations. Any changes to the policy will be communicated to our clients and posted on our website.

11. Contact Us

If you have any questions or concerns about our Data Security Policy or the security of your data, please contact us at:

DNT Corporate Services
Email: dntoffice7@gmail.com
Phone: +359 2980 2520
Address: Vitosha Blvd 67, Sofia, Bulgaria