Confidentiality Policy

At European Quality Certificate, we are fully committed to ensuring the confidentiality, privacy and protection
of all information provided by clients, partners and organizations under evaluation. All information handled by our
team is treated according to the principles of legality, security, integrity and strict professional discretion.

1. Scope of confidentiality

This policy applies to all data, documents, reports, communications and materials shared with European Quality Certificate,
regardless of their format (digital, physical or verbal). Disclosure of such information is strictly prohibited without
prior written authorization from the rightful owner.

2. Confidentiality principles

  • Integrity: protection against unauthorized modification.
  • Restricted access: information is only accessible to authorized personnel.
  • Data minimization: only essential information is processed.
  • Legitimate purpose: information is used exclusively for contracted services.
  • Professional secrecy: all personnel sign mandatory confidentiality agreements.

3. Protected information

Confidentiality covers, but is not limited to:

  • Personal and corporate data.
  • Technical and strategic documentation.
  • Audit, verification and certification results.
  • Client procedures, internal methods and know-how.
  • Financial, commercial or contractual information.

4. Security measures

We implement advanced security controls in accordance with GDPR and European cybersecurity standards:

  • Encrypted communication and document storage.
  • Role-based access controls and authentication.
  • Secure certified servers with advanced protection.
  • Regular backups and protected storage environments.
  • Access monitoring and device control measures.

5. Confidentiality during audits and certifications

All documentation reviewed during audits, verifications or certification processes is handled under strict confidentiality
protocols. No information is shared with third parties without explicit consent, except in cases of legal obligation or
regulatory accreditation requirements.

6. Personnel and third-party obligations

All staff members and external collaborators operate under binding confidentiality agreements.
Any breach constitutes a serious violation and may lead to legal consequences.

7. Data retention and deletion

Information is retained only for the time necessary to fulfil its purpose or comply with legal requirements.
After that period, data is securely and irreversibly deleted.

8. Rights of information owners

At any time, the information owner may request:

  • Access to the processed data.
  • Correction or updates.
  • Limitation of processing.
  • Deletion (when legally permitted).

9. Contact for confidentiality matters

For inquiries regarding this Confidentiality Policy:
Email: contact@europeanqualitycertificate.eu