OUR LATEST SERVICE: | ESSENTIAL ARCHIVE STORAGE - Archiving Made Simple, for 100 boxes or less
SECURE DATA MANAGEMENT EUROPEAN PRIVACY NOTICE
Notice last updated: 16 May 2019
This Privacy Notice (“Notice”) is adopted by Secure Data Management Limited (UK Registered Company #5068449).
Secure Data Management understands your concerns about the privacy of data you may provide to us, to a third party representative acting on our behalf (for a list of our third party representatives and data processing agreement, please click here) or which we obtain through your use of the Secure Data Management Website (“Site“) or the services we provide to our prospect customers and customers (“Services“).
This Notice is not intended to override the terms of any contract you have with us, nor any rights which you may have available under applicable data protection laws. This Notice provides you with information about:
Who we collect information from
Secure Data Management collects information from the following data subjects:
We may collect, store and process Personal Information of customers of Secure Data Management’s customers, solely on our customer’s behalf and at their direction. For such purposes, we serve as and shall be considered as a processor and not as a controller of such personal information. The Secure Data Management customers shall be considered as the controllers of such Personal Information and are responsible for complying with all laws and regulations that may apply to the collection, use and control of such Personal Information.
Secure Data Management customers who use our services in this way are responsible for obtaining any consents, permissions and for providing any fair processing notices required for the collection and usage of such information.
We are concerned about the safety of children when they use the Internet, and will never knowingly collect Personal Information from minors (children under 16 years of age, or any other age defined under applicable law). If we become aware that a minor is attempting to or has submitted Personal Information via this Site, we will notify the user that we may not accept his or her Personal Information. We will then remove any such Personal Information from our records.
We collect two types of information from you: “Personal Information“ (anything which identifies you as an individual, either on its own or by reference to other information) and “Aggregate Information“ (non-personally identifiable and anonymous data).
On our Site, Personal Information (such as your name, address, telephone number, or email address) is collected when you voluntarily submit it through a Site form, such as during a request for product information or a download of a study or whitepaper. Other information that may also constitute Personal Information (such as your browser type, operating system, IP address, domain name, number of times you visited the Site, dates you visited the Site, and the amount of time you spent viewing the Site) may be collected via cookies and other tracking technologies (such as transparent
GIF files). Aggregate Information (such as how many times visitors log onto this Site) may also be collected.
Outside of this Site, Personal Information may also be collected directly by us or by our representative when you enter into a contract with us or contact us to make enquiries or complaints via telephone, email or by post. We or a Secure Data Management representative may collect your business contact details and information about your profession or your employees, as well as information about you if you attend meetings, events or conferences that we organise or sign up to our newsletters.
What legal basis we have for collecting and using your personal information
Where relevant under applicable laws, the use of your Personal Information will be justified by at least a condition for processing. In the majority of cases this condition will be that:
The purposes for which we use your Personal Information
Your Personal Information will not be used for any other purpose than provided by this Notice. We will use the information you supply:
We would like to use your Personal Information to provide you with information about products and services which we think may be of interest to you or your employer. We will only send you such materials by email and/or contact you by telephone if, when you are presented with the option at various points on our Site or during our contact with you, you gave us your prior express consent to receive such communications (“opt in”). In case you have not given your opt in consent to be contacted by Secure Data Management, your Personal Information (only to the extent that is absolutely required) will be retained on a “do not contact” list.
In connection with our offline activities, you may simply notify Secure Data Management that you wish to cease receiving additional information from Secure Data Management (“opt out”), and Secure Data Management will honour any such request. Your Personal Information will be stored by us only as long as you do not change your mind to receive such materials from Secure Data Management, with the exception of those Personal Information which is required to avoid contacting you in the future for marketing purposes. We will provide you with the option to opt-out of marketing communications by following the opt-out link included below and in electronic communications, or by contacting us using the details set out below.
If you consented to receive any communications from us at the time you registered on this Site or you gave your contact details offline to us for such purpose, but subsequently change your mind, please contact us to action any changes you wish to make.
A cookie is a small text file that is downloaded to your computer when visiting a website. It allows that website to recognize your computer when you return, enabling it to display personalized settings and other user preferences. Cookies also help websites improve the relevance of the advertising you see online. Other tracking technologies (including “web beacons” and “transparent GIF files”) are technical mechanisms that enable our service providers to gather information on your response to our advertisements, e-mails, and other online marketing materials.
We use several different types of cookies. In particular, we use: strictly necessary cookies which allow certain fundamental features of the Site to work; functionality cookies, which allow us to remember choices you make (e.g. your cookie preference); and performance cookies, which monitors usage of the Site. We also use third party cookies – these are cookies that are set by a third party website rather than by us.
Some of the cookies are session cookies which are temporary and allow us to link your actions during a single use of the Site. These are deleted at the end of your browsing session. Others are persistent cookies which remain on your device for the period of time specified in the cookie. These cookies help us to identify you as a unique user (by storing a randomly generated number).
Please be aware that some of our services will not function if your browser does not accept cookies. However, you can allow cookies from specific websites by making them “trusted websites” in your internet browser.
The following links may assist you in managing your cookies settings, or you can use the ‘Help’ option in your internet browser for more details:
We work with third parties to help manage our business and deliver services. We and our service providers (as defined below) disclose and share your Personal Information:
Any access to such information will be limited to the purpose for which such information was provided to us or our Service Providers, as explained in the “How we use the information we collect” section above.
We will retain your Personal Information for as long as is reasonably necessary for the purposes for which it was collected, as explained in this Notice. In some circumstances we may retain your Personal Information for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax or accounting requirements.
In specific circumstances we may retain your Personal Information for longer periods of time so that we have an accurate record of your dealings with us in the event of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your Personal Information or dealings.
Where we have obtained your Personal Information in order to provide you with marketing information for our products and services, your Personal Information will be stored by us only as long as you do not change your mind to receive such materials from Secure Data Management, in order to avoid future contact with you for marketing purposes. We maintain a data retention notice which we apply to records in our care. Where your Personal Information is no longer required we will ensure it is securely deleted.
We may use third party advertisements on this Site. Cookies and other tracking technologies may be associated with these advertisements. Note: Secure Data Management is not responsible for the functionality of and actions taken by cookies and other tracking technologies created and placed by our third party service providers. In relation to these cookies and tracking technologies, the third party service providers are the data controllers and we advise you to familiarise yourself with their individual privacy policies.
Subject to certain exemptions, and in some cases dependent upon the processing activity we are undertaking, you have certain rights in relation to your Personal Information:
We may ask you for additional information to confirm your identity and for security purposes, before disclosing the Personal Information requested to you. We reserve the right to charge a fee where permitted by law, for instance if your request is manifestly unfounded or excessive.
You can exercise your rights by contacting us at: email@example.com. Subject to legal and other permissible considerations, we will make every reasonable effort to honour your request promptly or inform you if we require further information in order to fulfil your request.
We may not always be able to fully address your request, for example if it would impact the duty of confidentiality we owe to others, or if we are legally entitled to deal with the request in a different way.
You have a right to request that we provide you with a copy of your Personal Information that we hold and you have the right to be informed of; (a) the source of your Personal Information; (b) the purposes, legal basis and methods of processing; (c) the data controller’s identity; and (d) the entities or categories of entity to whom your Personal Information may be transferred.
You have a right to request that we rectify inaccurate Personal Information and we may seek to verify the accuracy of the Personal Information before rectifying it.
You can also request that we erase your Personal Information in limited circumstances where:
We are not required to comply with your request to erase your Personal Information if the processing of your Personal Information is necessary:
You can ask us to restrict your Personal Information, but only where:
We can continue to use your personal data following a request for restriction, where:
You can ask us to provide your Personal Information to you in a structured, commonly used, machine-readable format, or you can ask to have it transferred directly to another data controller, but in each case only where:
You can object to any processing of your Personal Information which has our legitimate interests as its legal basis, if you believe your fundamental rights and freedoms outweigh our legitimate interests.
Once you have objected, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms.
You can request that we change the manner in which we contact you for marketing purposes. You can request that we not transfer your Personal Information to unaffiliated third parties for the purposes of direct marketing or any other purposes.
You can ask to obtain a copy of, or reference to, the safeguards under which your Personal Information is transferred outside of the European Economic Area.
We may redact data transfer agreements or related documents (i.e. obscure certain information contained within these documents) for reasons of commercial sensitivity.
You have a right to lodge a complaint with your local supervisory authority about our processing of your personal data.
We ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time.
We recommend that you check this Notice every time you visit our Site or provide us with your Personal Information offline as we may update this Notice from time to time, by posting the amended Notice on this Site. Any changes will be effective when posted and your continued use of the Site or not objecting to the use of your Personal Information will indicate your acknowledgement of any changes.
If you have any questions, concerns or complaints regarding our compliance with this Notice and the data protection laws, Privacy Shield Principles or if you wish to exercise your rights of access, choice, rectification or deletion, we encourage you to first contact us. We will investigate and attempt to resolve complaints and disputes regarding use and disclosure of Personal Information in accordance with this Notice. For any complaints that cannot be resolved with us directly, Please contact the relevant DPA contacts.
For users resident in the European Union, you also have a right to lodge a complaint with your supervisory authority for data protection at any time: http://ec.europa.eu/justice/dataprotection/bodies/authorities/index_en.htm
If you have questions concerning this Notice, please contact our Chief Compliance Officer at firstname.lastname@example.org