GDPR (Data Processor) Policy

VIBRA LAB S.L. acts as Data Processor when processing invoices containing personal data on behalf of the customer.

• Process data only on documented instructions.
• Ensure confidentiality.
• Implement appropriate security measures.
• Not sub-contract without equivalent guarantees.
• Assist the controller in exercising data subject rights.

Cloud or technology providers that meet equivalent security standards may be used.

In the event of a security breach, the customer will be notified without undue delay.