1. Preamble: –
1.1 GDPR compliance: –
If you are located in the European Union, the GDPR may apply to you. Under the GDPR (General Data Protection Regulation) we are obligated to provide you with the following information pertaining to collection and usage of your personally identifiable data under the following criteria: –
- What personal information is collected?
- How we collect it?
- What we use it for?
- How we keep it secure?
- Whether we share it with third parties?
- Any controls customers have over any of this?
Please read the following text carefully to understand your rights and obligations under the GDPR guidelines.
2. Information Collection: –
2.1 How it is collected: –
2.2 What information is collected: –
Personally identifiable information (hereinafter “Personal Data”) is any information that can be used to identify and contact You, including Your e-mail address, full name, and/or telephone number. When You register to use the Site, we collect such Personal Data about You in order for Us to be able to deliver Our services to you, administrate Our business and ensure Our legal compliance.
If We have gathered your consent to do so, we may periodically send You details via e-mail about the products and services that We offer. You may opt out of receiving these e-mails, and hereby withdraw your consent, at any time by ticking the ‘opt out’ box provided in the promotional e-mail.
When You access the Site, our server automatically collects certain information such as your IP-address, pages viewed, and length of time spent on the Site. We collect and use this information to diagnose problems with our server, to improve Our site, and to provide content of interest to You. We may also give affiliates and partners access to aggregate data about Our users and their use of the Site during user sessions.
It is in Our legitimate interest to use Your Personal Data in such a way to ensure that We provide the very best service to You and Our other customers.
2.3 Safeguards: –
At PIXHOTO we take reasonable, industry standard steps to safeguard the security and confidentiality of any information that is collected from our clients. We use systems with limited access, located at facilities with technical, physical and administrative security measures, to protect against unauthorized access to, use or disclosure of Personal Data we collect or store.
2.4 Usage of the customer’s data: –
Unless absolutely necessary, the customer’s data is shared only with our team, our associates, our affiliates and our legal team. During the normal course of operation, the customer’s data is only shared with:
- Our professional advisors such as lawyers and accountants;
- Governments or regulatory authorities;
- Tax authorities;
- Third parties to whom We outsource certain services such as IT systems or software providers, hosting service providers, payment service providers, document processing and translation services, etc.;
- Third party service providers who assist Us with customer insight analytics.
Often, we appoint sub-contractors as required to deliver our services to the customers. These sub-contractors process the Personal Data on our behalf. We ensure contractual documentation in relation to any sub-contractor to make sure that they process Personal Data according to our legal and regulatory obligations including confidentiality and privacy.
The customer must be aware of the fact that the data collected from them including their personal data is often processed at an off-site location which is not located in Canada. If You are based within the European Economic Area (EEA), please note that where necessary to deliver the services we will transfer personal information to countries outside the EEA.
All PIXHOTO’S entities have signed a data sharing agreement which is based on the EU standard contractual clauses to ensure that we comply with our legal and regulatory obligations in relation to Personal Data, including having a lawful basis for transferring Personal Data.
When the customer visits the website and purchases our services, we will process the relevant Personal Data for at least five years from the date of our last interaction with the customer and in compliance with our obligations under the EU General Data Protection Regulation.
In some cases, we may be legally obligated to keep processing Your Personal Data for a longer period of time. We may be required under Law to share such data with law enforcement agencies and courts. It shall then become our legal obligation to do so.
2.5 Third-party websites: –
2.6 Rights and remedies: –
You have the following rights regarding the Personal Data we process:
Right to rectification: If the Personal Data We process is inaccurate or incomplete, you are entitled to request to have it rectified.
Right to deletion: You may, under certain circumstances, ask us to delete or remove your Personal Data. Such circumstances may arise where We no longer need it or if you withdraw your consent (where applicable).
Right to restrict processing: You can, under certain circumstances, ask PIXHOTO to ‘block’ the processing of Personal Data. Such circumstances may arise where you contest the accuracy of that Personal Data or you object to us.
Right to data portability: You have the right, under certain circumstances, to obtain the Personal Data you have provided us with (in a structured, commonly used and machine-readable format) and to reuse it elsewhere or to ask us to transfer this to a third party of your choice.
Right to object: You may, under certain circumstances, ask us to stop processing your Personal Data.
Right to withdraw your consent: If we rely on your consent as our legal basis for processing your Personal Data, you have the right to withdraw that consent at any time.
Right to complain: If you have a concern about any aspect of our practices regarding the processing of Personal Data, you can report it to the relevant supervisory authority.
If you wish to exercise your rights, you may send an email message to: firstname.lastname@example.org.