Privacy Notice

GPDR.org 24th May 2018

1. Introduction

At GDPR.org we are committed to protecting the privacy of your personal data. Any personal data that you share with us will be kept safe and secure. We want to be clear about how and when we collect data from you and how and why we use it. Our Privacy Notice explains in detail the types of data we may collect about you and how we will use and store your personal data.

2. Who are gdpr.org

gdpr.org (the site) is administered by PrivacyTrust (International Charter Ltd)

1st Floor North, St Georges House, Knoll Road, Camberley GU15 3SY

3. What Personal Data Do We Collect?

When you register on the site we collect your:

• First & last name

• Job title

• Email

• Company Name

• IP address

4. Cookies

Cookies are small text files on your computer, smart phone, tablet or other device. They are made by your web-browser when you visit a website. Every time you go back to that website, your browser will send the cookie file back to the websites server. Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences and generally improving the user experience.

We use cookies for functional reasons and analytics; you have the option to opt out of analytics.

5. Why Do We Need Your Personal Data and How We Use It?

We use your information to:

• Update your company profile

• Allow you to have access to the resources on the site

6. What are the Legal Bases that We Use to Process Your Personal Data? 

Legitimate Interest: is used when it is necessary for our legitimate interests and your interests and fundamental rights do not override those. 

It allows personal data to be collected and used if it is reasonably necessary for our legitimate interests, without this the site would not work.  

We will use legitimate interests to:

• Process activities that govern gdpr.org

7. When and How Do We Collect Your Data

• We collect your data when you register at gdpr.org 

• When you log into your account

8. Marketing

We don’t actively market to the subscribers to gdpr.org.

9. How Long Do we Keep Your Data

We will keep your personal data for as long as you are actively using the site or until you request us to delete your personal details. If you become inactive, your profile will remain for 12 months after your last log in, you will be sent a reminder at which point you can choose for your data to continue to be held by us. Any articles you have written will continue to be stored on the site after your personal data has been deleted.

10. Sharing Your Data

We do not share or swap your data with any other organisation. There may be a need to disclose your personal data upon request to regulatory and government bodies as well as law enforcement agencies.

11. Children 

Although we are not responsible for determining the age of website visitors, gdpr.org is primarily designed and meant to be used by individuals over 16 years of age. If you are younger than this then please review the terms of this privacy notice with a parent or guardian.

12. Your Rights

We want to ensure that your rights are upheld when we use and store the information you give to us.

Accessing the information that we hold on you – Subject Access Request 

You can request a copy of the information that we have on you,  this will be free of charge in most cases, please let us have details of the personal data you want to see and proof of your identity, please use the contact form at https://www.gdpr.org/contact.php or by writing to us at Data Access Request, 1st Floor North, St Georges House, Knoll Road, Camberley GU15 3SY

Correcting the information that we hold on you

If your personal information is out of data or is incorrect, we will correct it for you

You wish your personal data to be erased from our records

Simply let us know and we will delete you from our database, this will mean that all records of you will be erased from our database, please note for legal reasons we may not always be able to do this.

You can restrict the processing that we do

You may object to our use of your personal data. We aim to update your record within 5 days.

You wish to take your information away from us

We will provide you (or a third party you nominate) with your personal data in a structured, commonly used and machine-readable format.

If you feel that your data is not being managed in an appropriate manner, you can raise a concern with the ICO, we are registered under International Charter Ltd

You can also find general information from the ICO

https://ico.org.uk/for-the-public

13. How We Keep Your Data Safe

As an organisation we are totally committed to keeping your data safe. Your personal data is stored in secure servers based in the EU. We regularly monitor our systems for vulnerabilities. Access to your data is closely monitored; it is only accessible by staff and contractors who are bound by appropriate policies and procedures to protect your information.

14. Your Data Manager Contact gdpr.org

If you have a problem and wish to contact us please use: datamanager@privacytrust.org, we will aim to answer your query within 5 days.

By post: Data Manager, 1st Floor North, St Georges House, Knoll Road, Camberley GU15 3SY

15. Transferring Your Data

Your data will not be transferred out of the EU

We would suggest that you read this Privacy Notice carefully to ensure that you are well informed about and understand our practices. We may from time to time update this notice, so please do take the time to check it regularly. If we are in regular contact with you and there are significant updates we will inform you.