How we manage Privacy Laws & protect your Data?
What types of Personal Data we handle at Qomon
How we manage Data and Privacy Law Compliance at Qomon
How we help our customers comply with Privacy Laws
Disclaimer: Qomon does not replace any specialized legal advice or designation within your organisation of a "Data Controller" or "Data Protection Officer". This resource is provided for informational purposes only and cannot replace expert legal advice.
💡Tips and best practices:
Practice # 1: Give your team the necessary access to information
There are different roles in Qomon. Some roles, such as “member”, do not allow access, or very limited access (like “field organizer”), to personal data. Find details here: Custom Roles & Permissions on Qomon
Give your team members only the necessary access to information within your team, and remember, that they are a part of your team but also under the responsibility of your organization! It similar to an employee and company relationship.
During your first connection, the web platform will remind you of this!
Other good practices: Do not forget to...
Change your password regularly.
Remove access to your members who have not been active for some time (you have access to the activity of your members in the "analysis" tab of the web platform) or who seem to no longer belong on the app.
Practice #2: As an admin, be careful to respect the rules!
As an admin you get to set keywords or tags, support levels, questions... With great power come great responsibility.
As an admin, you have access to your organization’s parameters, from which you can define status (there are some by default), contact forms, surveys, or tags for your entire organization).
Remember that the tags and fields you create must remain adequate and not excessive in terms of purpose.
Remember to limit unrestrained fields and unrestrained comments for your teams so that there is no clumsy or illegal information in your database
Think about raising awareness (like during Qomon trainings) about collecting and using data soundly.
Practice #3: Empower and make your teams accountable
Remind your teams of the principles listed at the beginning of this article. They need to explain to the people they meet the context of their approach, why they do it, with which organization/movement, and their consent.
Do not force the hand of those who do not wish to enter the process of disclosing their contact information or answering your questions, it is totally useless.
Mobilizing and engaging citizens has nothing to do with the accumulation of data, but more with the relationship of trust that is built with the person.
Best Practice #4: Appoint a DPO (Data Protection Officer)
You can appoint a Data Protection Officer (or DPO) within your organization. They would be the person in charge of making sure the rules relating to personal data are respected.
Create a personalized email address made specifically to contact you for requests of personal data information.
Third parties can contact them if they have questions about their personal data.
It is important to be pro-active in these steps to show your good will regarding the respect of the right of rectification, deletion etc.
Reach out to our DPO at [email protected]
✊ In the end, it’s all about progress
Keep in mind that the use of a platform is much more virtuous than the old systems of paper or excel files that just keep piling up!
The software keeps the trace of the origin, the timestamp of the consent, the possibility of permanently deleting a contact (without storing it elsewhere), of centralizing the data, thus of being able to fully inform an individual of all the data you have on them!
Qomon keeps things transparent.