The following definitions are used in this GDPR Statement:
Customer - the counterparty to a Service Agreement with Datacom who has received consent from EU Data Subjects to collect and process their Personal Information;
EU Data Subject - living individual residing in an European Union Member State, including the United Kingdom;
GDPR – Regulation (EU) 2016/679 of the European Parliament and Council, and all applicable data protection and privacy laws and regulations in any EU Member State or nation within the European Economic Area;
Legitimate Interest - the legal basis under GDPR for collection of Personal Information;
Service Agreement - any written contract, any written statement of work, or any other written binding agreement between Datacom and the Customer.
Datacom collects, uses, stores and transfers Personal Information to manage its relationship with its Customers, employees, business partners and other third parties (“covered individuals”) and better serve covered individuals by personalising their experience and interaction with Datacom. Such processing is done in compliance with applicable laws, Service Agreements, including appropriate notice and consent.
We may not always be able to fully address your request, for example if it would impact the duty of confidentiality we owe to others, or if we are legally required to retain Personal Information, or we are entitled to deal with the request in a different way.
The details of the Personal Information that will be processed by Datacom on behalf of a Customer, including the duration, purpose and categories of Personal Information, will be set out in a Service Agreement with the Customer for authorisation to process Personal Information. Datacom will create and maintain records of the processing of the Personal Information. By signing the Service Agreement, the Customer authorises Datacom to process or to subcontract the processing of personal data to a third party, and confirms that consent has been obtained from the EU Data Subjects.
Personal Information from EU Data Subjects will only be transferred outside of the European Economic Area in accordance with the provisions and protections within the GDPR. Datacom uses a variety of lawful data transfer mechanisms for this purpose, including EU Standard Contractual Clauses.
Datacom has an intragroup agreement on the transfer and processing of Personal Information within the Datacom global group which has the EU Standard Contractual Clauses incorporated. This agreement allows Datacom to ensure that Personal Information, including Personal Information originating from the European Economic Area, which is transferred cross-border and processed by other Datacom entities, including those located outside the European Economic Area, is adequately protected in accordance with the GDPR.
Datacom does not knowingly collect information from children as defined by local law, and does not target its websites and services to children. We encourage parents and guardians to take an active role in their children’s online activities and interests.
We may update this GDPR Statement from time to time. If we do, we will post the revised version, with an updated revision date.
Mr Ian Charlesworth at GDPRfirstname.lastname@example.org.