We take our own responsibilities under data protection very seriously, including upholding the data subject’s right to transparency. This privacy notice contains information about what data we collect and store about you, how we use it, the legal basis for using it and how long we keep it. It also tells you who we share this information with, what we do to protect your data and how to get in touch with us.
koneckt Ltd , hereinafter “KONECKT” collects, uses and is responsible for certain categories of your personal information. When we do this we are the ‘controller’ of this information for the purposes of the General Data Protection Regulation (GDPR) and other applicable data protection laws, including the Data Protection Act 2018.
We also will process data given to us by our clients under their instruction in the course of providing services to them. When we do this, we are a data processor, which accounts for most of our processing activity.
We may collect personal data about you as follows:
We use your personal information for the following purposes:
We have a legal basis for all the data we process. We rely on a different legal basis depending on the data we are processing and the reason we are processing it. We rely on the following legal basis in these circumstances:
In some cases you will give us consent to use your information in a certain way. If you have given us consent to use your data in a certain way, and we have no other legal basis for doing so, we will rely on your consent. The activities where we rely on your consent are:
We will rely on our legal obligations to process information for the following purposes:
We will process information that relates to the services we are providing you with, or receiving from you, that are bound by our engagement with you (legal contract). The areas where we are processing data to enter into, or fulfil a legal contract are:
We may rely on a legitimate interest to process information. When we do this we will have assessed our legitimate interest to consider the rights and freedoms of the data subject.
We rely on legitimate interest to train our staff so that they can provide an exceptional service to all of our clients. There may be scenarios relating to their engagement with you which we review with them as part of training and development.
We take client confidentiality seriously.
If you are an end-user, will only share your name, email address, the name of the industry you selected as well as your advertising audit with our client that referred you to our service. No raw data which was used to generate the report will be shared.
Other information we process we may share with:
Any partners, suppliers or third parties we share data with will be bound by strict agreements that meet the requirements of GDPR, and will be monitored for performance with those agreements.
We will share personal information with official bodies if required by law including the ICO, the police, law enforcement and intelligence agencies.
It may be necessary to transfer your personal information outside the EEA or to an international organisation in order to perform your instructions. We do not routinely transfer data outside of the EEA, and if we do we will notify you of the reasons, the legal basis for doing so, any relevant risk assessments that we want to make you aware of, and the safeguards in place to protect your rights and freedoms.
Clients can access our systems outside of the EEA by logging in through the cloud-based portal. In these cases and when we are acting as a data processor, the means and purposes of processing (including transfer outside of the EEA) is decided entirely by our client.
We will only keep your information for as long as necessary to complete the purposes we have described above. We use the following retention periods and review these periodically to make sure we are only keeping what we need (If information can be kept for two different periods, we will keep it for the longer of those two periods):
Under the GDPR, you have a number of important rights that you can exercise free of charge. In summary, these rights are:
If you want more information about your rights under the GDPR please see the Guidance from the Information Commissioners Office on Individual's rights under the GDPR.
If you want to exercise any of these rights, please contact us and let us know who you are and what right you want to exercise. We may need to ask for additional information regarding your identity, and we may also need some information from you on specific categories of data, types of processing activities or periods of processing activities that you wish to focus your request around.
We will respond to you no later than one month from when we receive your request.
If something does go wrong or you are in anyway unhappy with how we have treated your data then please do not hesitate to contact Johannes Radig ([email protected] or see below ‘get in touch’).
The General Data Protection Regulation also gives you the right to lodge a complaint with a supervisory authority. The UK supervisory authority is the Information Commissioner’s Office who can be contacted at https://ico.org.uk/concerns/.
We do not intend to process your personal information for any reason other than stated within this privacy notice. If this changes, we will update this privacy notice on our website and in any documentation we will send to you.
This privacy was published in April 2020. It is due for review no later than April 2021. We regularly review our internal privacy practices and may change this policy from time to time. When we do we will inform you by updating our website and telling you in any documentation or messages we send you.
If you have any questions about this privacy notice or the information we hold about you, please contact us and let us know it is in relation to your data. We will make sure you speak to the right person:
By Email: [email protected]
© Copyright 2021 Koneckt - All Rights Reserved.