Various legislative mandates require that THOR ensure adequate security for Personal Data. This document is intended to describe THOR’s Standard Operating Procedure for ensuring adequate security of THOR-Personal Data, hosted by 3rd Party Providers.
All suppliers providing (directly or indirectly) web hosting services shall ensure that the supplier, any party collecting or processing personal data on behalf of the supplier, and all services provided by or through the supplier comply with this Web-Hosting Standard Operating Procedure and all applicable laws and regulations (including those obligations imposed by GDPR and CCPA).