WithYou Data Protection and Privacy Policy



Data Protection Policy

WithYou OU

1. Data protection principles

The Company is committed to processing data in accordance with its responsibilities under the GDPR.

Article 5 of the GDPR requires that personal data shall be:

processed lawfully, fairly and in a transparent manner in relation to individuals;

collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;

further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes;

adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;

accurate and, where necessary, kept up to date;

every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;

kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organizational measures required by the GDPR in order to safeguard the rights and freedoms of individuals;

and processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.

2. General provisions

This policy applies to all personal data processed by the Company.

The Responsible Person shall take responsibility for the Company’s ongoing compliance with this policy.

This policy shall be reviewed at least annually.

The Company shall register with the Information Commissioner’s Office as an organization that processes personal data once the business would be started in UK.

3. Lawful, fair and transparent processing

To ensure its processing of data is lawful, fair and transparent, the Company shall maintain a Register of Systems.

The Register of Systems shall be reviewed at least annually.

Individuals have the right to access their personal data and any such requests made to the charity shall be dealt with in a timely manner.

4. Lawful purposes

All data processed by the company must be done on one of the following lawful bases: consent, contract, legal obligation, vital interests, public task or legitimate interests (see ICO guidance for more information).

The Company shall note the appropriate lawful basis in the Register of Systems.

Where consent is relied upon as a lawful basis for processing data, evidence of opt-in consent shall be kept with the personal data.

Where communications are sent to individuals based on their consent, the option for the individual to revoke their consent should be clearly available and systems should be in place to ensure such revocation is reflected accurately in the Company’s systems.

5. Data minimisation

The Company shall ensure that personal data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.

6. Accuracy

{% trans "The Company shall take reasonable steps to ensure personal data is accurate. Where necessary for the lawful basis on which data is processed, steps shall be put in place to ensure that personal data is kept up to date. " %}

7. Archiving / removal

To ensure that personal data is kept for no longer than necessary, the Company shall put in place an archiving policy for each area in which personal data is processed and review this process annually.

The archiving policy shall consider what data should/must be retained, for how long, and why.

8. Security

The Company shall ensure that personal data is stored securely using modern software that is kept-up-to-date.

Access to personal data shall be limited to personnel who need access and appropriate security should be in place to avoid unauthorized sharing of information.

When personal data is deleted this should be done safely such that the data is irrecoverable.

Appropriate back-up and disaster recovery solutions shall be in place.

9. Breach

In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data, the Company shall promptly assess the risk to people’s rights and freedoms and if appropriate report this breach to the appropriate government body.

END OF POLICY

Privacy Policy

WithYou OU

What information do we collect?

We collect information from you when you register on our site http://withyou.ee and fill the data in the profile update forms.

When ordering, registering, updating your profile and reassigning the tokens to you, as appropriate, you may be asked to enter your: name or email address, phone, link to your website or profile in social network, card number, shipping and/or billing address, upload your photos. You may, however, visit our site anonymously or purchase tokens without registration on the website.

2. What do we use your information for?

Any of the information we collect from you may be used in one of the following ways:

{% trans "2.1 To enable you use the WithYou service by means of connecting a token (bought by you or granted to you by another person) to your profile;" %}

passing your contact to the inviting person;

to pass your contact to the invitee in case he or she has confirmed the mutual interest.

Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the express purpose of delivering the purchased product or service requested by the customer.

2.2 To send to you newsletters and marketing materials in case you would agree to receive those.

Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.

2.3 To get back to you once you’ve requested help or support through our contact form.

2.4 To personalize your experience as your information helps us to better respond to your individual needs.

2.5 To improve our website as we continually strive to improve our website offerings based on the information and feedback we receive from you.

2.6 To improve customer service as your information helps us to more effectively respond to your customer service requests and support needs.

2.7 To administer a contest, promotion, survey or other site feature.

3. How do we protect your information?

We implement a variety of security measures to maintain the safety of your personal information when you access your personal information.

4. Do we use cookies?

We do use cookies for improving your experience with our service and to collect the information on whether the users come back to our website.

5. Do we disclose any information to outside parties?

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information. This does not include trusted third parties who assist us in operating our website, conducting our business, or servicing you, so long as those parties agree to keep this information confidential. We may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others rights, property, or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

6. Third party links

Occasionally, at our discretion, we may include or offer third party products or services on our website. These third party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

7. Online Privacy Policy Only

This online privacy policy applies only to information collected through our website and not to information collected offline.

8. Terms and Conditions

Please also visit our Terms and Conditions section establishing the use, disclaimers, and limitations of liability governing the use of our website and service below.

9. Your Consent

By selecting the consent checkbox during the registration process you consent to our privacy policy.

10. Changes to our Privacy Policy

If we decide to change our privacy policy, we will post those changes on this page and send the changes notification to you even through you would not be subscribed to our newsletter.

This policy was last modified on 28.08.2018

{% trans "11. Contacting Us If there are any questions regarding this privacy policy you may contact us using the information below." %}

https://www.withyou.ee

{% trans "11314 Estonia, Harju maakond, Tallinn, Parnu mnt 141-59 support@withyou.ee" %}