Privacy Policy

1. PERSONAL DATA

Personal data refers to information that, when used alone or in conjunction with other data, can identify an individual. Such data is obtained when you use our website, products, or services, and when you interact with us by submitting information or through recording how you interact with our website, products, or services, for example, through technologies like cookies. The type of data we collect depends on the specific website you visit or the products and services you use, and may include but is not limited to personal information such as name, address, email address, and phone number. The purpose of collecting personal data is to establish communication with you in order to provide relevant services or send important notifications.

2.PRIVACY POLICY

Forest Logistics Properties and its global subsidiaries (hereinafter referred to as "Forest," "we," or "our") are well aware of the importance of personal data to our customers and users. In light of this, Forest places significant emphasis on the protection of personal data for our customers and users. We have implemented a series of measures to ensure that relevant business operations comply with applicable personal data protection requirements, such as GDPR.

2.1To ensure the effective implementation of personal data protection requirements, Forest has appointed a Data Protection Officer (DPO).

2.2Forest adopts industry-recognized personal data protection methods and practices. In business scenarios where GDPR is applicable, Forest utilizes the Data Protection Impact Assessment (DPIA) methodology to assess and minimize the risk of personal data security in its products and services.

2.2.1 Forest requires a comprehensive assessment of personal data involved in products and services, and projects involving personal data must undergo a DPIA;

2.2.2 Projects involving personal data are required to establish data inventories and data flow diagrams;

2.2.3 Projects involving personal data shall identify possible risks during data processing (including collection, usage, storage, sharing, deletion, etc.) and take appropriate measures based on risk levels (including managerial, physical, and technical measures). 

2.2.4 After performing a DPIA, the corresponding report shall be exported and approved by the DPO.

2.3. Forest implements technical means including intrusion detection, access control, encryption, data leakage prevention, anti-spam, terminal security protection, and vulnerability scanning. Additionally, the effectiveness of personal data protection measures is verified through penetration testing.

2.4. Forest has established emergency response mechanism for personal data leakage. In case of personal data leakage, we will promptly initiate the emergency response process, we making efforts to minimize potential losses resulting and ensuring that affected individuals receive appropriate notifications.   

2.5. Forest has established an ongoing employee privacy policy training mechanism to ensure that every employee involved in GDPR can accurately understand the legal principles of data protection based on his/her specific job duties and strictly implement the company's applicable systems and processes. 

2.6. To ensure compliance, Forest conducts necessary technical audits and process audits related to personal data protection.

Personal data protection is not only a legal requirement, but also a corporate social responsibility. Forest committed to continuously optimizing products and services to ensure security and privacy, thereby reducing the personal data protection risks for customers and users.

3.UPDATES TO THIS POLICY

Forest reserves the right to update or modify this policy from time to time. In the event of any changes to this policy, we will publish the latest version here. If there are significant changes to our privacy policy, we may also notify you through various channels, such as posting notices on our website or sending individual notifications to you.