Data security has always been a top priority, and we have been securely managing sensitive personal data long before GDPR became mainstream.
When you choose Xact by Ramboll, you receive a data processing agreement tailored to the data processing we undertake on your behalf — fully compliant with the EU's General Data Protection Regulation (GDPR).
In other words, opting for a solution from Xact by Ramboll means you’re guaranteed legal compliance.
We Assume Responsibility
While you are responsible for your own data, Xact by Ramboll takes on the responsibility for the actual data processing.
This means we are accountable for ensuring that your data is not accidentally or unlawfully destroyed, lost, altered, misused, accessed by unauthorized parties, or otherwise processed in violation of prevailing legislation.
Detailed Log and Access Control
Every action within our Xact systems is meticulously logged, allowing us to document every single operation performed by both users and our employees.
Our logging is so comprehensive that we can reconstruct a user-session at any time, providing an exact overview of the data a given user accessed during the process. And we do not grant access to your data to our support staff unless you have given explicit permission.
Furthermore, as an added layer of access control, our optional Two-Factor Login module can be utilized.
This enables you to keep unauthorized individuals out, even if your username and password fall into the wrong hands. If your Xact solution experiences repeated unsuccessful login attempts from the same username or IP address, the system automatically blocks further login attempts from that source.