Follco doesn’t allow the uploading and storage of unnecessary data. Article 25(2) covers processing only the data that is necessary for the purpose -> Follco needs very little data in the system to allow the business to perform marketing. Security under the GDPR is regulated under Article 32. https://gdpr-info.eu/art-32-gdpr/.
Follco has been designed with Data Protection by Design and Default in mind. Follco ensures data minimisation is adhered to by capturing only necessary fields of information and not allowing the uploading and storage of unnecessary data. Follco operates on minimal personal data to facilitate the business to perform marketing activities. Furthermore, Follco ensures security through various methods such as encryption over the databases that store personal data.