Mihai POENARU Compliance Officer Data protection We strive to protect the data of our employees, customers, suppliers and business partners. We associate data protection with the conscientious management of personal data. We are committed to complying with the legal requirements for processing personal data when using the data of any party that interacts with PENNY. We document, review and process every data protection request sent to PENNY responsibly. Most operational processes are affected by the General Data Protection Regulation (EU GDPR). Examples of personal data that we manage in the course of our business activities and for which we pay special attention: z data of customers using the PENNY Loyalty Card z the data of users who visit the PENNY website or use a contact form z data entered by candidates for new jobs on the PENNY careers page The existing roles of the 'responsible parties', namely the governing bodies, the specialized departments and the Data Protection Officer, have been complemented by the roles of Compliance officer and Compliance Manager, in charge of data protection. In addition to their data protection advice and monitoring by data protection officers, data protection coordinators are one of the key success factors for the implementation of data protection requirements. The Compliances manager, who is directly managing the Compliance officer, reports directly to the company's management, the CFO. CORPORATE GOVERNANCE AND BUSINESS SUSTAINABLE ASSORTMENT ENERGY, CLIMATE AND RESOURCES EMPLOYEES AND SOCIETY REPORT ASSURANCE GRI & SASB INDEX
RkJQdWJsaXNoZXIy MTk3NjE0OQ==