We take pride in the fact that enhancing quality is one of Greenbrier Europe’s most strategic goals. Quality of our products, of our services, and now quality of the treatment of your personal data. As we take utmost care to protect your personal data, we want to assure you that all processing of your data will be done in accordance with the requirements of the General Data Protection Regulation (GDPR) which entered into force starting with 25 May 2018.
Please find below some pieces of information regarding the processing of the personal data you entrust us, each time we come into contact.
Greenbrier ensure that all activities involving the processing of personal data is performed lawfully and transparently. The personal data collected by Greenbrier is used only for the purpose for which the collection took place. We collect only relevant data and we limit our processing activities only to those strictly necessary for reaching the purpose the personal data was collected. We are doing our best efforts to keep the data accurate and up to date and thus we may from time to time request you to update your personal data.
Greenbrier processes personal data lawfully, either for the performance of a contract, in order to comply with a legal obligation, justified by Greenbrier’s legitimate interest or based on your explicit consent.
All personal data is secured against unauthorized or unlawful processing and against accidental loss, destruction or damage, by using appropriate technical and organizational measures. We are also committed to preventing unlawful disclosure of your data by ensuring that all Greenbrier’s employees are subject to confidentiality obligations and all transfers of personal data are appropriately secured.
Greenbrier may collect and process personal data belonging to legal representatives, attorneys in fact or any other individuals designated as contact persons in relation to Greenbrier. Also, we may collect personal data from various data subjects who may request general information regarding Greenbrier’s products and services, technical assistance, or from persons in charge with the execution of our clients’ contractual obligations towards Greenbrier.
As part of our HR and employment legal obligations, we also collect and process personal data related to our workforce, in line with EU and local legislation.
Categories of data and data collection channels
The data we collect highly depends on the services Greenbrier provides to you. For example, for the performance of a contract we may process identification data of the legal representative, such as name, surname, ID number, billing details, address, email, phone number. Also, upon your request, we may process your email address in order to send you newsletters and other marketing communications related to Greenbrier’s products and services.
For commercial purposes, Greenbrier does not process special categories of data, such data revealing racial or ethnical origin, religious, philosophical of political beliefs etc. or personal data related to children.
Data collection may take place through various channels, depending on how you prefer to communicate with us: by phone, email or personally contacting a Greenbrier representative.
Retention and disclosure
Greenbrier stores your personal data only as long as requested by the purpose of the processing. Afterwards, your data will be erased or anonymized, if the law does not impose an additional storage period.
Your data may be disclosed to other companies from Greenbrier group, to our partners and service providers that process personal data on behalf of Greenbrier or to authorities that have the right to request the provision of such data. To ensure the security and protection of personal data, we have established appropriate safeguards such as standard contractual clauses, internal policies.
Rights of the Data Subjects
And because we want you to be in full control of your data, please note that you can exercise the following rights: the right of access to the data, to request rectification or erasure, to request the restriction of processing or the withdrawal of consent, to object to the processing or to file a complaint to the data protection authorities.
For any inquiry in this respect, you may contact our DPO’s, at iodo[at]gbrx.com (Poland) and rpd[at]gbrx.com (Romania). They will gladly assist you!