What personal information does DirectiveGroup collect and how do you use it?
In order to provide our full range of services and provide the best experience for our clients, we may collect the following types of information:
User provided information. Areas of the web site allow you to submit personal information to us (such as your name, email address, telephone number and mailing address) via internet browser based (‘contact us’) forms or by sending us an e-mail. In addition, areas of our web site may require that you register for email newsletters or to access your personal account. We may retain and use those communications in order to process your requests, respond to communications or to improve the quality of your experience.
Web Logs. By accessing our web site, our Internet servers automatically record information your Internet browser sends when you visit a web site. These logs may contain information such as your Internet protocol (IP) address, browser version, domain name, language, date and time, and the referring web site. We use log analysis to improve the user experience of our website.
We will only use your personal information (i) to provide our services or information about our services to you, (ii) for analysis in order to improve our services and operations, (iii) to develop solutions and services, (iv) to comply with applicable law, rules and regulations and (iv) for the specific reasons outlined on our web site when we collect your information.
If we use your information for a purpose different from those outlined above, we will ask for your consent prior to such use. You may choose to opt-out of such use at any time. You may also request we remove your personal information from our active systems at any time by contacting us by email or letter at the addresses shown above.
With whom does DirectiveGroup share my information?
We will not share your personal information with third parties outside of our fulfillment partners unless we have your consent or unless we have a good faith belief we are required to share such information to satisfy applicable law, including the prevention of fraud. We may share certain aggregated, non-personal information collected from you (such as your browser type) with third parties in order to improve our services, but such information is not sufficient to individually identify you. If you wish to revoke your consent to our sharing of your personal information, you may contact us by email or letter at the addresses shown above. You may not revoke your consent to our sharing of your information when such revocation would violate applicable law or a directive from a court of competent jurisdiction.
We do not share or sell your information to third parties for marketing purposes.
Does DirectiveGroup allow me to review, or raise a complaint about my personal information?
You may review and request changes to your personal information stored on our active systems by contacting us at the email or street address above. This includes requesting that we delete all personally identifying information as it relates to you and your account.
How does DirectiveGroup protect my personal information?
Security. We take reasonable measures to identify and prevent unauthorized access to our systems and disclosure of your personal information. We also restrict access to your personal information to only those persons who need to know the information in order to perform the services we offer. Your personal information may be stored on computers systems maintained by an agent or service provider of our company, each of which will be bound by agreement to protect the confidentiality of your personal information. Our computer systems are located in the United States of America, but the computer systems of our service providers may be located in another country. Your submission of personal information constitutes your consent to the transfer and storage of your information across international borders.
Data Integrity. We only store and process your information for the purpose we collected such information or as otherwise described in this policy. We take reasonable steps to verify the information we collect is complete and accurate, but our ability to maintain the accuracy and completeness of such information is dependent on the users of our web site providing updated and corrected information to us as necessary. We review our information use practices as necessary in order to improve the services we offer.
Does this policy apply to links on your web site?
How long will your data be stored?
Your data could be stored and used by DirectiveGroup in perpetuity, or for the length of time that DirectiveGroup and its subsidiaries are in business.
ER Residents - Your rights under GDPR:
1) Right to information
You have the right to ask [client name] for information about what personal data is being processed and why it is being processed.
2) Right to access
You have the right to get access to your personal data that is being processed.
3) Right to rectification
You have the right to ask for modifications to your personal data in case you believe that this personal data is not up to date or accurate.
4) Right to withdraw consent
You have the right to withdraw a previously given consent for processing of their personal data for a purpose.
5) Right to object
You have the right to object to the processing of their personal data. This includes when a your personal data should not be processed for certain purposes while a legal dispute is ongoing in court.
6) Right to object to automated processing
You have the right to object to a decision based on automated processing and ask that your information be reviewed manually, because you believe that automated processing may not provide all the necessary information.
7) Right to be forgotten
You have the right to ask for the deletion of your data. (Note: This is not an absolute right, and depends on your retention schedule and retention period in line with other applicable laws).
8) Right for data portability
This right provides the data subject with the ability to ask for transfer of his or her personal data. As part of such request, the data subject may ask for his or her personal data to be provided back (to him or her) or transferred to another controller. When doing so, the personal data must be provided or transferred in a machine-readable electronic format.
Who can make a rights request, and how?
A rights request can be made by you or by your legal representative. Any such request must be made in writing.