In 2018, Rexel continued its GDPR (General Data Protection Regulation) compliance initiative, which standardizes the rules applicable to personal data protection within the European Union. A data protection program and roadmap have been implemented. The roadmap is organized around several major initiatives that include the establishment of a record of data processing activities, employee training, management of the exercise of data subjects' rights, governance of procedures and data, contractual commitments, and IT protection.
The Group has prepared an internal personal data chart that defines a set of rules to be respected in conducting Rexel's activities. This charter incorporates the major personal data protection principles and is divided into several policies and procedures drafted to support Rexel's employees and stakeholders in the performance of their activities.