The technical and organisational measures presented in this document are implemented by IDDO in accordance with GDPR. They are continuously improved by IDDO to ensure a level of security appropriate to risk in relation to latest best practice.