LogoLogo
Contact usMail us
  • Let's Get Digital Knowledge base!
  • Branded App
    • Your Branded App
      • Create an Apple Developers Account
      • Grant Access to Apple Developer Account
      • Contacting Apple Support
      • How to Complete Your Trader Status in App Store Connect
    • App 30 min Quickstart guide
    • App - Best Practises
    • Virtual event 30min Quickstart
      • Virtual event- Best Practices
  • The admin panel
    • Overview
    • Users
      • User tags
        • Creating user tags
        • Assigning user tags
        • Managing user tags
      • Creating a user
      • Registration form
        • Registration Form - User Input
        • Registration Form - Dropdown Personal Programme
        • Registration Form - Final Result
        • RSVP function
        • Social sharing
      • Duplicate user
      • Export
      • 📱Application (App)
        • Users (App)
          • Check-in/out (App)
          • Generate registration codes (App)
          • Export (App)
          • User badges
          • User account deletion
      • 💻Virtual platform (Virtual event)
        • Virtual event users
        • Speakers & Moderators (Virtual event)
    • Content
      • 💻Content (Virtual event)
        • Ads (Virtual event)
        • Call to Action (Virtual event)
        • Companies (Virtual event)
          • Company tags (Virtual event)
          • Extra exposure (Virtual event)
        • Certificates (Virtual event)
        • Locations (Virtual event)
        • Pages (Virtual event)
          • Examples for a FAQ (Virtual event)
        • Posters (Virtual event)
        • Files (Virtual event)
        • Programme (Virtual event)
          • Programme tags (Virtual event)
          • Programme overview based on tags (Virtual event)
          • Personal programme (Virtual event)
            • Access tags (Virtual event)
          • 📢Live stream (Virtual event)
            • ▶️YouTube stream (Virtual event)
              • ♻️YouTube video loop (Virtual event)
            • 📺Twitch stream (Virtual event)
            • 📹Vimeo stream (Virtual event)
              • ♻️Vimeo video loop
            • 🔲Embed webpage (iframe) (Virtual event)
            • 🛫Jet-Stream (Virtual event)
            • 🌀OBS Studio software (Virtual event)
              • ▶️Connecting YouTube to OBS (Virtual event)
              • 📺Connecting Twitch to OBS (Virtual event)
              • 📹Connecting Vimeo to OBS (Virtual event)
              • 🛫Connecting Jet-Stream to OBS (Virtual event)
              • 🎦Connecting Zoom to Samba via OBS (Virtual event)
              • 🎤Connecting sources (Virtual event)
          • Polls in sessions (Virtual event)
          • Q&A's in sessions (Virtual event)
          • YouTube (Virtual event)
          • Twitch (Virtual event)
          • Jet-Stream (Virtual event)
          • Vimeo (Virtual event)
          • Iframe (Virtual event)
          • Network Carousel (Virtual event)
            • Network Carousel FAQ (Virtual event)
          • Exhibitors (Virtual event)
          • Group video call (Virtual event)
          • Program on pre-event page (Virtual event)
          • Webinar (Samba) (Virtual event)
            • 🔍Webinar Samba Attendee overview (Virtual event)
            • 📣Breakout rooms (Virtual event)
            • 🔈Conversations (Virtual event)
            • 💻Screenshare (Virtual event)
            • 💭White board (Virtual event)
            • 📚Content library (Virtual event)
            • 📑Shared notes (Virtual event)
            • 📡Livestream (Virtual event)
            • 📹Recording (Virtual event)
            • 🔧Settings (Virtual event)
            • 🔙Return everyone to lobby (Virtual event)
            • 🔊Multiple speakers (Virtual event)
      • 📱Content (App)
        • Ads (App)
        • Photo albums (App)
        • Companies (App)
          • Managing companies
          • Company QR codes (App)
          • Company tags (App)
          • Company chat (App)
          • Company statistics (App)
        • Floor plan (App)
        • Locations (App)
        • Pages (App)
          • FAQ's (App)
            • Examples for a FAQ (App)
        • Posters (App)
        • Files (App)
        • Programme (App)
          • Registered Sessions
            • Connecting registered sessions to users (My programme) (App)
          • Interaction Tools (App)
          • Session tags (App)
          • Export subscriptions (App)
          • Session groups (App)
          • Programme overview based on tags (App)
          • List of all subscriptions (App)
          • Session check-in (App)
          • Access tags (App)
          • Advanced Programme Logic
          • Programme export (App)
        • Personal programme (App)
        • Video (App)
        • Certificates (App)
    • Communication
      • Mails
        • Mail editor
        • Mail receivers
        • Send mail options
      • 💻Communication (Virtual event)
        • Feedback (Virtual event)
          • Feedback survey form (Virtual event)
          • General feedback (Virtual event)
          • Session feedback (Virtual event)
          • NPS (Virtual event)
        • Feedback Results (Virtual event)
        • Push notifications (Virtual event)
          • Examples for push notifications (Virtual event)
        • Networking tables (Virtual event)
        • Connection Center (Virtual event)
      • 📱Communication (App)
        • Connection Center (App)
        • Push notifications (App)
        • Feedback (App)
          • Feedback survey (App)
          • General feedback (App)
          • Session feedback (App)
          • NPS (App)
      • Social Wall
    • Navigation
      • 💻Navigation (Virtual event)
        • Virtual event (menu) (Virtual event)
        • Virtual event (lobby tiles) (Virtual event)
        • External navigation (Virtual event)
      • 📱Navigation (App)
        • Explanation pop ups (App)
        • Navigation settings (App)
    • Matchmaking
      • 💻Matchmaking (Virtual event)
      • 📱Matchmaking (App)
    • Appointments
      • 💻Appointments (Virtual event)
      • 📱Appointments (App)
    • Virtual event
      • Go to event (Virtual event)
      • Session host instructions (Virtual event)
      • On-demand (Virtual event)
      • Delay event (Virtual event)
    • Statistics
      • 📱Statistics (App)
        • User export (App)
        • Subscriptions export (App)
        • Feedback export (App)
        • Booth view (App)
        • Stats report (App)
        • Social wall (Export App)
        • Q&A lobby export (App)
        • Page views export (App)
        • Network table export (App)
      • 💻Statistics (Virtual event)
    • Settings
      • General settings
        • Admin panel settings
        • Badge printing settings
        • Branding settings
          • Advanced colour settings (SA only) (Virtual event)
        • Certificate settings
        • Connection Center settings
        • Custom code settings
        • Data hashing settings
        • Event information settings
        • Excel export settings
        • Exhibitor portal settings
        • Feedback settings
        • Mail settings
        • NPS settings
        • Organisation information settings
        • Privacy settings
        • Registration & pre-event page settings
      • App settings
        • Advertisement settings (App)
        • General settings (App)
        • Layout settings (App)
        • Networking bubble settings (App)
        • Programme settings (App)
        • Registration settings (App)
          • Registration modes (App)
          • Logging in for users (App)
        • Self check-in service settings (App)
        • Session settings (App)
        • Social wall settings (App)
        • Swipe to match settings (App)
        • Registered session settings (App)
      • Virtual event settings
        • General settings (Virtual event)
        • Layout settings (Virtual event)
        • Lobby content (Virtual event)
        • Networking bubble settings (Virtual event)
        • On-demand settings (Virtual event)
        • Programme settings (Virtual event)
        • Session settings (Virtual event)
        • Social Media - Share Option (Virtual event)
        • Social Wall settings (Virtual event)
        • Videos settings (Virtual event)
        • Workshop settings (Virtual event)
      • Mails
      • Import / Upload Data
        • How do I import my programme?
        • Excel templates
      • Additional data fields
      • Integrations
        • Aanmelder.nl
        • Eventbrite
        • weeztix (formerly know as Eventix)
        • HubSpot
        • Vivenu
      • API tokens
        • Webhooks
      • App design
    • WOW effects
      • 💻Virtual influencers (Virtual event)
      • 💻Toilet feature (Virtual event)
      • 💻Shake up (Virtual event)
      • 📱Treasure hunt (App)
      • 📱Swipe to Match (App)
      • 📱AI-Matchmaker
  • LGD features
    • Pre-event page (App)
    • App download page (with QR)
    • Personal notes (App)
    • The lobby (Virtual event)
    • CO₂ Calculator in Virtual Event
    • Chat
      • Group chats (VP)
      • Public chat
    • My profile
    • My connections
      • 💻My connections (virtual event)
      • 📱My connections (App)
    • Instruction videos (Virtual event)
    • Interactive map (Virtual event)
    • Self check-in service
      • Location self check-in QR code (App)
      • Networking table self check-in (App)
    • Accreditation
    • Help desk
    • Multi language feature
    • Switch User View (Virtual event)
    • LGD Testing suite (Virtual event)
    • Exhibitor portal
    • Admin panel passwords (App + Virtual event)
  • FAQ's
    • FAQ about the Virtual Platform (Virtual event)
      • Lobby or programme stream (Virtual event)
      • Networking (Virtual event)
      • Sessions (Virtual event)
      • Branding (Virtual event)
      • Programme (Virtual event)
      • Support (Virtual event)
      • Technical (Virtual event)
      • Data Protection (Virtual event)
    • FAQ about the Application (App)
      • App Functions
      • Images (App)
      • Communication (App)
      • Custom IOS Certificates (App)
      • General (App)
      • Optional - Mentimeter (App)
      • Prices (App)
      • Programmes (App)
      • Shake to connect (App)
      • Speakers (App)
      • Users (App)
      • Brochures (App)
    • Platform and Application compatibility
    • Change log
  • PRICING & PACKAGING
    • Service packages (App + Virtual event)
    • Feature list (App + Virtual event)
    • Subscription model (App + Virtual event)
    • Invoice system (Virtual event)
    • 🖨️Badge printing (App)
      • Setting up your own printer
      • 🖨️How to submit a Custom badge design
      • Badge printing settings
      • Custom Branding Checkin Stations
    • Hybrid Events
    • Subscription Container
  • MISC
    • 💻Virtual platform (Virtual event)
      • Technical specifications (Virtual event)
        • Bandwidth (Virtual event)
          • Samba user capacity (Virtual event)
        • Browser support (Virtual event)
        • VPN (Virtual event)
      • Copy of Technical specifications (Virtual event)
        • Bandwidth (Virtual event)
          • Samba user capacity (Virtual event)
        • Browser support (Virtual event)
        • VPN (Virtual event)
      • Whitelisting (Virtual event)
      • Custom URL (Virtual event)
      • Technical and Organisational Measures
      • Brochures (Virtual event)
      • GDPR, data & access (Virtual event)
    • 📱Application (App)
      • APIs
        • Webhooks
      • Data Protection
Powered by GitBook

Contact support

  • Mail us
On this page
  • I. Confidentiality
  • II. Integrity
  • III. Availability
  • IV. Resilience
  • V. Process to restore the availability and access to personal data in the event of a physical or technical incident
  • VI. Process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the data processing

Was this helpful?

  1. MISC
  2. Virtual platform (Virtual event)

Technical and Organisational Measures

Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, appropriate technical and organizational measures must be implemented to ensure a level of security appropriate to the risk.

I. Confidentiality

1. Access control of processing areas / Admittance control

Let's Get Digital has implemented suitable measures to prevent unauthorized persons from gaining physical access to the data processing equipment where personal data is processed. This has been accomplished through the following:

• Protection and restriction of access paths;

• Established access authorizations for staff and third parties, including the respective documentation;

• Regulations on card keys;

• Restriction on card keys;

• Logging, monitoring, and tracking of all access to the data centre where personal data is hosted;

• Securing the data centre where personal data is hosted by means of a security alarm system, among other appropriate security measures.

2. Access control to data processing systems / Entry Control

Let's Get Digital has implemented suitable measures to prevent its data processing systems from being used/accessed by unauthorized persons. This has been accomplished through the following:

• Issuance of individual logins to users; passwords must adhere to constraints in length, complexity, ageing and history;

• Identification of the terminal and/or the terminal user to the Supplier systems;

• Automatic turn-off of the user ID when several erroneous passwords are entered, log file of events (monitoring of break-in-attempts);

• Dedication of individual terminals and/or terminal users, identification characteristics exclusive to specific functions;

• Compliance with staff policies in respect of each staff access rights to personal data (if any), informing staff about their obligations and the consequences of any violations of such obligations, to ensure that staff only access personal data and resources required to perform their job duties and training of staff on applicable privacy duties and liabilities;

• Logging, monitoring, and tracking of all access to data content.

3. Access control to use specific areas of data processing systems / Access Control

Let's Get Digital has committed that the persons entitled to use its data processing system are only able to access the data within the scope and to the extent covered by their respective access permission (authorization) and that personal data cannot be read, copied, modified, or removed without authorization. This is accomplished through the following:

• Assignation of minimum access rights to staff members of Let's Get Digital dependent on their job requirements;

• Compliance with staff policies in respect of each staff member's access rights to the personal data;

• Allocation of individual terminals and/or terminal users, and identification characteristics exclusive to specific functions;

• Monitoring capability in respect of individuals who delete, add or modify personal data and at least yearly monitoring and updating of authorization profiles;

• Release of data to only authorized persons;

• Policies controlling the retention of backup copies;

• Use of state-of-the-art encryption technologies.

4. Separation of processing for different purposes

Let's Get Digital has implemented suitable measures to make sure that data collected for different purposes can be processed separately. This is accomplished through the following:

• Ensuring strict logical or physical separation between personal data and other personal information in respect of which Let's Get Digital is a controller or a processor;

• Processing personal data received from different clients separately;

• Separation of access to data through application security for the appropriate users;

• Separation of data used for different purposes through modules within the Let's Get Digital database, i.e. by functionality and function;

• Storing of data in different areas (at the database level), separated per module or function they support;

• Designing of interfaces, batch processes and reports for only specific purposes and functions, so data collected for specific purposes is processed separately;

5. Job control

Let's Get Digital has implemented suitable measures to ensure that personal data is processed in accordance with the instructions of the controller. This is accomplished by:

• Binding policies and procedures for Let's Get Digital's employees, subject to the controller's review and approval.

Let's Get Digital ensures that if security measures are adopted through external entities it obtains a written description of the activities performed that guarantees compliance with the measures adopted with this document. Let's Get Digital further implements suitable measures to monitor its system administrators and to ensure that they act in accordance with instructions received. This is accomplished by:

• Individual appointment of system administrators;

• Adoption of suitable measures to register system administrators' access logs and keep them secure, accurate and unmodified for at least six months;

• Yearly audits of system administrators' activity to assess compliance with assigned tasks, the instructions received by importers and applicable laws; and

• Keeping an updated list with system administrators' identification details (e.g. name, surname, function or organizational area) and tasks assigned.

• Disaster recovery and business continuity plans;

• Conducting regular checks of all the implemented and herein described security measures at least every six months;

• Only re-using backup tapes if information previously contained is not intelligible and cannot be reconstructed by any technical means; other removable media is destroyed or made unusable if not used;

• Recording any detected security incident, alongside the followed data recovery procedures, and the identification of the person who carried them out;

• Firewalls, anti-virus solutions;

6. Pseudonymization

Let's Get Digital processes personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person

7. Encryption

Let's Get Digital uses state-of-the-art encryption technologies.

II. Integrity

1. Input control

Let's Get Digital shall implement suitable measures to make sure that it can check and establish whether and by whom personal data has been inputted into data processing systems or removed. This is accomplished through the following:

• An authorization policy for the input of data into memory, as well as for the reading, alteration and deletion of stored data;

• Logging of entries, amendments and deletion of personal data in data processing systems; operating document management systems;

• Authentication of the authorized personnel; individual authentication credentials such as user IDs that, once assigned, cannot be re-assigned to another person (including subsequently);

• Protective measures for the data input into memory, as well as for the reading, alteration and deletion of stored data;

• Utilization of user codes (passwords) of at least eight characters or the system maximum permitted number and modification at first use and thereafter at least every 90 days in case of processing of sensitive data;

• Following a policy according to which all staff of Let's Get Digital who have access to personal data processed for controller shall reset their passwords at a minimum once in a 180-day period;

• Ensuring that entries to data processing facilities (the rooms housing the computer hardware and related equipment) are capable of being locked;

2. Transmission Control

Let's Get Digital implements suitable measures to prevent personal from being read, copied, altered or deleted by unauthorized parties during the 180 days or during the transport of the data media. This is accomplished through the following:

• Use of appropriate firewall and encryption technologies;

• Logging and monitoring of all data transmissions as far as possible;

• Monitoring of the completeness and correctness of the transfer of data (end-to-end check);

III. Availability

Let's Get Digital shall implement suitable measures to make sure that Personal Data is protected from accidental destruction or loss. This is accomplished through the following:

• Infrastructure redundancy to ensure data access is restored within seven days and backup performed at least weekly;

• Conducting regular checks of all the implemented and herein described security measures at least every six months;

• Only re-using backup tapes if information previously contained is not intelligible and cannot be reconstructed by any technical means; other removable media is destroyed or made unusable if not used;

• Recording any detected security incident, alongside the followed data recovery procedures, and the identification of the person who carried them out;

• Firewalls, anti-virus solutions

IV. Resilience

Let's Get Digital has implemented the following points

• Infrastructure redundancy;

• Disaster recovery;

• Back-up databases;

V. Process to restore the availability and access to personal data in the event of a physical or technical incident

• Restoring availability and access to personal data promptly in the event of a physical and technical incident;

• Implementing a suitable incident response management;

VI. Process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the data processing

• Implementing a suitable data protection management in its organization;

• Conducting regular audits;

• Preparation of an internal audit plan.

Last updated 1 year ago

Was this helpful?

💻