Last updated: October 23, 2018
TrafficPoint Ltd. (“Company” or “we”) respects the privacy rights of our user and partners. In the event you are an EEA resident, this Data Subject Right Policy (“Policy”) is designated to provide you with a summary of your rights under the EU General Data Protection Regulation (“GDPR”).
The right to basic information
Data subjects have the right to understand who the Company and its affiliates are, and why and how it or they process personal data. The right to basic information includes, without limitations, the right to know the identity of the data controller, the reasons and grounds for processing personal data, and any other information necessary to ensure the fair and transparent processing of personal data.
The right of access (“Subject Access”)
Data subjects have a right to obtain confirmation from the Company that it processes certain personal data related to a data subject and a right to obtain a copy of that information, along with other details about how and why the Company uses the data subject’s information. Once the veracity and appropriateness of an access request is affirmatively determined by the Company, we will, within the period required by the law, provide you with: confirmation of processing, the copy of the personal data or a description of the personal data and categories of data processed, the purpose for which such data is being held and processed, and details about the source of the personal data if not provided by the data subject.
The right of rectification
The Company must ensure that all personal data that it holds and uses about a data subject is correct. If such data is not accurate, a data subject has the right to require that the Company updates such data so it is accurate. In addition, if the Company has passed on incorrect information about a data subject to a third party, the data subject also has a right to oblige the Company to inform those third parties that this information should be updated.
The right of erasure (“right to be forgotten”)
Data subjects have a right to require the Company to erase certain personal data if particular conditions are satisfied. The Company is legally obligated to comply with a request to delete personal data if:
In addition, if the Company has passed on personal data to a third party, a data subject also has a right to oblige the Company to tell those third parties that the information should be erased. The right to erasure is not absolute. Even if a data subject falls into one of the categories described above, the Company is entitled to reject the data subject’s request and continue processing data if such processing is:
The right to object
In the event the Company processes personal data on the basis that it is in its legitimate interests to do so (i.e., direct marketing), a data subject has the right to object to our processing on such grounds. Notwithstanding the receipt of such an objection, the Company shall be permitted to continue processing a data subject’s personal data if:
The right of restriction
A data subject may limit the purposes for which the Company may process its personal data. The Company’s processing activities may be restricted if:
The right of data portability
A data subject can request that the Company send or “port” its personal data to another entity. Portability rights only apply if the data in question was provided by the data subject to the Company, processed automatically, and is processed on the legal bases of either consent or fulfilment of a contract.
The right to object to direct marketing
If the Company sends you marketing communications by email or other electronic methods a data subject has the right to require the Company to stop sending such communications.
If you have any further question please contact our DPO at: email@example.com. Note, you can request your rights in any form or manner, however, to validate your identification and validate request we will require completion of the form.