General Data Protection Regulation (GDPR)
v0.1, august 2019
What is GDPR?
The General Data Protection Regulation (GDPR) came into force on May 25, 2018. This regulation transforms the operating landscape for any organization, companies, government agencies that handle personal data about EU residents in order to give them more control over their personal data.
Roles under GDPR
Under GDPR, there are stronger responsibilities for both data controllers and data processors. DataSoft Solutions has the role of a "data controller" who collect through website personal data of its users.
Key GDPR requirements
As the new GDPR requirements become a reality, worldwide organizations are becoming aware of their data privacy and security needs regarding their collection and handling of personal information. As a data controller, we have some big responsibility in collecting and managing the data. So, these are essential parts that we think we need to highlight:
• Data security
In order to be GDPR compliant companies need to achieve a certain level of security - enveloping both organizational security controls—to prevent information leaks, data distribution, or other unauthorized data processing actions. At DataSoft Solutions we believe in supporting our clients and give them an excellent understanding of the General Data Protection Regulation (GDPR). We take all the measures to offer the right level of security.
• Right to access
The new legislation gives data subjects extended rights – data subjects must be able to access, transfer, correct, or erase their data at any time, as well as withdraw consent for its continued use.
• Records of processing activities
Companies need to document how they collect, process and store personal data. Also, they need to implement appropriate technical and organizational measures, deploy audit for the effectiveness of their security programs and take corrective measures if they are demanded.
• GDPR notification
The GDPR has specific requirements about when and how customers have to announce a personal data breach to their regulators and/or impacted individuals. To understand and learn more about the GDPR, visit the EU GDPR webpage.
We make sure your data is safe with DataSoft Solutions
DataSoft Solutions is committed to being fully compliant with GDPR legislation. DataSoft Solutions has more than 13 years of experience in the design and development of secure database management, data protection, and security solutions. In this section, we have put together all the information that our clients and prospects need to know about the General Data Protection Regulation (GDPR) legislation and reassure them about the security of their data.
v0.1, august 2019
1. Use of the subscription service by DataSoft Solutions and our customers
DataSoft Solutions subscription service
Our online Subscription Service allows any company that uses it (our customers and DataSoft Solutions itself) to create and share marketing, sales and customer service content. The Subscription Service can also be used to help organize sales data about a company’s sales pipeline (e.g., leads, customers, deals etc.). The information added to the Subscription Service, either by site visitors providing their contact information or when a Subscription Service user adds the information, is stored and managed on our service providers' servers. This information is then used to contact visitors about their interest in the company's goods or services and interact with the company. DataSoft Solutions provides the Subscription Service to our customers for their own marketing, lead generation, and customer service needs, and we use it to meet DataSoft Solutions's related needs.
Use by DataSoft Solutions
Use by our customers
This refers to credit or debit card numbers, personal financial account information, Social Security numbers, passport numbers, driver's license numbers or similar personal identifiers, racial or ethnic origin, physical or mental health condition or information, or other employment, financial or health information.
2. Information we collect and how we could collect it
When you visit our website
You are free to explore the website without providing any personal information about yourself. When you visit the website or register for the Subscription Service, we request that you provide personal information about yourself, and we collect navigational information.
This refers to any information that you voluntarily submit to us and that identifies you including contact information such as: name, e-mail, address, company name, phone number, and other information. Personal Information also includes navigational or payment information tailored for specific product / service inquiry. Navigational information includes your IP address, geographical location, browser type, referral source, length of visit and pages viewed.
When you use our services we collect information about your computer. This information can include your IP address, browser type, domain names, internet service provider (ISP), the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, clickstream data, access times and referring website addresses. This information is used by DataSoft Solutions for the operation of the Subscription Service, to maintain quality of the Subscription Service, and to provide general statistics regarding use of the DataSoft Solutions website.
Information we collect from third parties
From time to time, we may receive personal information about you from third party sources including partners with which we offer co-branded services.
Information about children
The websites are not intended for or targeted at children under 18, and we do not collect any data about children under 18, however, if you believe that we have collected information about a child under 18, please contact us at privacy (at) eurodatalist (dot) com, so that we delete the information
3. How we use information we collect
Use of personal information
• improve your browsing experience by personalizing the website and to improve the Subscription Service;
• send information about our business by post, email, or other means;
• share promotional information in accordance with your communication preferences;
• provide other companies with statistical information about our users, but this information will not be used to identify any individual user;
• meet legal requirements.
We may, from time to time, contact you on behalf of external business partners about a particular offering that may be of interest to you. In those cases, we do not transfer your Personal Information to the third party.
We use the information collected through our Subscription Service by our customers for the following purposes:
• to provide the Subscription Service (which may include the detection, prevention and resolution of security and technical issues);
• to respond to customer support requests;
• otherwise to fulfill the obligations under the DataSoft Solutions Customer Terms of Service.
Legal basis for processing personal information (EEA visitors only)
If you are a visitor/customer located in the European Economic Area ("EEA"), DataSoft Solutions is the data controller of your personal information. DataSoft Solutions's Data Protection Officer can be contacted at privacy (at) eurodatalist (dot) com. Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it. However, we will normally collect personal information from you only where we have your consent to do so, where we need the personal information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect personal information from you. If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). Similarly, if we collect and use your personal information in reliance on our legitimate interests (or those of any third party), we will make clear to you at the relevant time what those legitimate interests are.
Use of navigational information
We use navigational information to operate and improve the website and the Subscription Service. We may also use navigational information alone or in combination with personal information to provide you with personalized information about DataSoft Solutions.
Use of credit card information
We don’t use or store your credit card information except for invoice and contract information without sharing them with third parties.
Security of your personal information
We use a variety of security technologies and procedures to help protect your personal information from unauthorized access, use or disclosure. We secure the personal information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. All personal information is protected using appropriate physical, technical and organizational measures.
4. How long we keep your information
Retention of personal information
How long we keep information we collect about you depends on the type of information, as described in further detail below. After such time, we will either delete or we will securely store your information and isolate it from any further use until deletion is possible. We retain personal information that you provide to us where we have an ongoing legitimate business need to do so (for example, as long as is required in order to contact you about the Subscription Service or our other services, or as needed to comply with our legal obligations, resolve disputes and enforce our agreements). We keep information derived from cookies and other tracking technologies for a reasonable period from the date such information was created.
5. How we share information we collect
We employ other companies and people to provide services to visitors to our website, our customers, and users of the Subscription Service and may need to share your information with them to provide information, products or services to you. Examples may include removing repetitive information from prospect lists, analyzing data or performing statistical analysis, providing marketing assistance, processing credit card payments, supplementing the information you provide us in order to provide you with better service, and providing customer service or support. In all cases where we share your information with such agents, we explicitly require the agent to acknowledge and adhere to our privacy and customer data handling policies.
DataSoft Solutions partners
If we (or our assets) are acquired by another company, whether by merger, acquisition, bankruptcy or otherwise, that company would receive all information gathered by DataSoft Solutions on the website and the Subscription Service. In this event, you will be notified via email and/or a prominent notice on our website, of any change in ownership, uses of your personal information, and choices you may have regarding your personal information.
We reserve the right to use or disclose your personal information if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a law, court order, or legal process.
6. International transfer of information
International transfers within DataSoft Solutions's entities
International transfers to third parties
DataSoft Solutions is responsible for the processing of personal data it receives under the Privacy Shield Framework and subsequently transfers to a third party acting as an agent on its behalf. DataSoft Solutions complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions. With respect to personal data received or transferred pursuant to the Privacy Shield Framework, DataSoft Solutions is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, DataSoft Solutions may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. Under certain conditions, more fully described on the Privacy Shield website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
v0.1, august 2019
What are cookies?
Navigational information collected by our customers
Our customers can use the tools we provide, as well as tools provided by third parties, to collect navigational information when you visit their webpages on the Subscription Service. We do not control our customers use of these tools, nor do we control the information they collect or how they use it.
Third party tracking technologies
How to access and control your personal data
Reviewing, correcting and removing your personal information
You have the following data protection rights:
• You can request access, correction, updates or deletion of your personal information.
• You can object to processing of your personal information, ask us to restrict processing of your personal information or request portability of your personal information.
• If we have collected and process your personal information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your personal information conducted in reliance on lawful processing grounds other than consent.
• You have the right to complain to a data protection authority about our collection and use of your personal information.
• To exercise any of these rights, please contact us at privacy (at) eurodatalist (dot) com, or by mail to DataSoft Solutions SA, PO Box 2069, Cascade, Mahé, Seychelles, Attention: Privacy. We will respond to your request to change, correct, or delete your information within a reasonable timeframe and notify you of the action we have taken.
To unsubscribe from our communications
You may unsubscribe from our marketing communications by clicking on the "unsubscribe" link located on the bottom of our e-mails, updating your communication preferences, or by sending us email at privacy (at) eurodatalist (dot) com or postal mail to DataSoft Solutions SA, PO Box 2069, Cascade, Mahé, Seychelles, Attention: Privacy. Customers cannot opt out of receiving transactional emails related to their account with us or the Subscription Service.
To unsubscribe from our customers' communications
Our customers are solely responsible for their own marketing emails and other communications; we cannot unsubscribe you from their communications. You can unsubscribe from our customers' marketing communications by clicking on the "unsubscribe" link located on the bottom of their emails, or by contacting them directly.
We use first party and third party cookies for several reasons. Some cookies are required for technical reasons in order for our website to operate, and we refer to these as "essential" or "strictly necessary" cookies. Other cookies also enable us to track and target the interests of our users to enhance the experience on our website and Subscription Service. For example, DataSoft Solutions keeps track of the website and pages you visit within DataSoft Solutions, in order to determine what portion of the DataSoft Solution website or Subscription Service is the most popular or most used. This data is used to deliver customized content and promotions within DataSoft Solutions website and Subscription Service to customers whose behavior indicates that they are interested in a particular subject area. Third parties serve cookies through our website for advertising, analytics and other purposes. This is described in more detail below.
What types of cookies do we use and how do we use them?
The specific types of first and third party cookies served through our website and the purposes they perform. These cookies include:
• Essential website cookies: These cookies are strictly necessary to provide you with services available through our website and the Subscription Service.
• Performance and functionality cookies: These cookies are used to enhance the performance and functionality of our website and the Subscription Service. However, without these cookies, certain functionality may become unavailable.
• Analytics and customization cookies: These cookies collect information that is used either in aggregate form to help us understand how our website and Subscription Service are being used or how effective our marketing campaigns are, or to help us customize our website for you.
• Advertising cookies: These cookies are used to make advertising messages more relevant to you. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, and in some cases selecting advertisements that are based on your interests.
• Social networking cookies: These cookies are used to enable you to share pages and content that you find interesting on our websites and Subscription Service through third party social networking and other websites. These cookies may also be used for advertising purposes too.
How can I control cookies?