Konsise – Privacy Policy
Last updated 5 January 2024
1. INTERPRETATION
1.1 In this Document, unless the context indicates a contrary intention, the following words and expressions bear the meanings assigned to them and cognate expressions bear corresponding meanings:
1.1.1. “Account” means a User opening an account with the Supplier;
1.1.2 “Account Administrator” means either User and/or one or more individuals;“
1.1.3. “Document” means this Privacy Statement;
1.1.4. “Konsise” means the Platform;
1.1.5. “Platform” means Konsise, Supplier’s all-in-one Tax Management Platform;
1.1.6. “Personal Data” means any information relating to individuals;
1.1.17. “Privacy Statement” means this Document;
1.1.8. “Supplier” means Konsise (Pty) Ltd., a company incorporated in South Africa, and its subsidiaries, holding companies and affiliates. Sometimes referred to as “us” or “we” or “our”;
1.2 In this Document:
1.2.1 clause headings and the heading of the Document are for convenience only and are not to be used in its interpretation;
1.2.2 an expression which denotes –
1.2.2.1 any gender includes the other genders;
1.2.2.2. a natural Person includes a juristic Person and vice versa;
1.2.2.3 the singular includes the plural and vice versa;
1.2.2.4. a Party includes a reference to that Party’s successors in title and assigns allowed at Law; and
1.2.2.5. a reference to a consecutive series of two or more clauses is deemed to be inclusive of both the first and last-mentioned clauses.
1.3. Any reference in this Document to –
1.3.1. “Working Hours” shall be construed as being the hours between 08h30 and 17h00 on any Business Day. Any reference to time shall be based South African time
1.3.2. “Days” shall be construed as calendar Days;
1.3.3. “Business Day” means any Day other than a Saturday or a Sunday or a national public holiday in South Africa;
1.3.4. “Laws” means all state constitutions; statutes; regulations; by-laws; codes; ordinances; decrees; rules; judicial, arbitral, administrative, ministerial, departmental or regulatory judgements, orders, decisions, rulings, or awards; compliance notices; abatement notices; agreements with, requirements of, or instructions by any governmental body having the force of law; and the common law, and “Law” shall have a similar meaning; and
1.3.5. “Person” means any person, company, close corporation, trust, partnership or other entity whether or not having separate legal personality.
1.4. The words “include” and “including” mean “include without limitation” and “including without limitation”. The use of the words “include” and “including” followed by a specific example or examples shall not be construed as limiting the meaning of the general wording preceding it.
1.5. Words and expressions defined in any clause shall, unless the application of any such word or expression is specifically limited to that clause, bear the meaning assigned to such word or expression throughout this Document.
1.6 Unless specifically otherwise provided, any number of Days prescribed shall be determined by excluding the first and including the last Day or, where the last Day falls on a Day that is not a Business Day, the next succeeding Business Day.
2. NATURE OF THIS DOCUMENT
2.1. This Privacy Statement describes Supplier privacy practices for the activities.
2.2. Please read this Privacy Statement carefully to learn how Supplier collects, uses, shares and otherwise processes Personal Data, and to learn about your rights and choices regarding our processing of your Personal Data.
3. RESPONSIBLE SUPPLIER ENTITY
3.1. Supplier is the controller of your Personal Data as described in this Privacy Statement, unless expressly specified otherwise.
3.2. For the avoidance of doubt, this Privacy Statement does not apply to the extent we process Personal Data in the role of a processor on behalf of our customers, including where we offer to our customers various products and services through which our customers (and/or their affiliates):
3.2.1. create their own websites and applications running on our platforms; or
3.2.2 sell or offer their own products and services; or
3.2.3. send electronic communications to other individuals; or
3.2.4. otherwise collect, use, share or process Personal Data via our products and services.
3.3. For detailed privacy information related to where a customer and/or a customer affiliate who uses our products and services is the controller, please reach out to the respective customer directly. We are not responsible for the privacy or data security practices of our customers, which may differ from those set forth in this Privacy Statement. For more information, please also see Section 19 below.
4. PROCESSING ACTIVITIES COVERED
4.1 This Privacy Statement applies to the processing of Personal Data collected by us when you:
4.1.1. Visit our websites that display or link to this Privacy Statement; or
4.1.2. Visit our branded social media pages; or
4.1.3. Visit our offices; or
4.1.4. Receive communications from us, including emails, phone calls, texts or fax; or
4.1.5. Use our products and services as an authorized user (for example, as an employee of one of our customers who provided you with access to our services) where Supplier acts as a controller of your Personal Data; or
4.1.6 Register for, attend and/or otherwise take part in our events, webinars or contests; or
4.1.7. Participate in community and open source development.
4.2. If applications, products or services are:
4.2.1. provided by us and the application links to this Privacy Statement, this Privacy Statement applies; or
4.2.2. provided by third parties, the privacy statement of the third party applies, and this Privacy Statement does not apply.
4.3. Our websites and services may contain links to other websites, applications and services maintained by third parties. The information practices of such other services, or of social media networks that host our branded social media pages, are governed by third parties’ privacy statements, which you should review to better understand those third parties’ privacy practices.
5. PERSONAL DATA WE COLLECT DIRECTLY FROM YOU
5.1. The Personal Data that we collect directly from you includes the following:
5.1.1. If you express an interest in obtaining additional information about our services, request customer support (including accessing any support or training sites), use our “Contact Us” or similar features, register to use our websites, sign up for an event, webinar or contest, or download certain content, we may require that you provide to us your contact information, such as your name, job title, company name, address, phone number, email address or username and password;
5.1.2. If you make purchases via our websites or register for an event or webinar, we may require that you provide to us your financial and billing information, such as billing name and address, credit card number or bank account information;
5.1.3. If you attend an event, we may with your further consent scan your attendee badge, which will provide to us your information, such as name, title, company name, address, country, phone number and email address;
5.1.4. If you register for an online community that we host, we may ask you to provide a username, photo and/or biographical information, such as your occupation, social media profiles, company name and areas of expertise;
5.1.5. If you use and interact with our websites or emails, we automatically collect information about your device and your usage of our websites or emails through cookies, web beacons or similar technologies, such as Internet Protocol (IP) addresses or other identifiers, which may qualify as Personal Data;
5.1.6. If you use and interact with our services, we automatically collect information about your device and your usage of our services, through log files and other technologies, some of which may qualify as Personal Data;
5.1.7. If you voluntarily submit certain information to our services, such as filling out a survey about your user experience, we collect the information you have provided as part of that request; and
5.1.8. If you visit our offices, you may be required to register as a visitor and to provide your name, email address, phone number, company name and time and date of arrival.
5.2. If you provide us or our service providers with any Personal Data relating to other individuals, you represent that you have the authority to do so and acknowledge that it will be used in accordance with this Privacy Statement. If you believe that your Personal Data has been provided to us improperly, or to otherwise exercise your rights relating to your Personal Data, please contact us by using the information set out in Section 24 below.
6. PERSONAL DATA WE COLLECT FROM OTHER SOURCES
6.1. We also collect information about you from other sources, including third parties from whom we have purchased Personal Data, and combine this information with Personal Data provided by you. This helps us to update, expand and analyze our records, identify new customers and create more tailored advertising to provide services that may be of interest to you.
6.2. In particular, we collect Personal Data from the following sources:
6.2.1. Third party providers of business contact information, including mailing addresses, job titles, email addresses, phone numbers, intent data (or user behavior data), IP addresses, social media profiles, LinkedIn URLs and custom profiles, for purposes of targeted advertising, delivering relevant email content, event promotion and profiling.
7. WHAT DEVICE AND USAGE DATA WE PROCESS
7.1. We use common information-gathering tools, such as tools for collecting usage data, cookies, web beacons and similar technologies to automatically collect information that may contain Personal Data from your computer or mobile device as you navigate our websites, our services or interact with emails we have sent to you.
7.2.1. As is true of most websites, we gather certain information automatically on connection with the use of the website by individual users. This information may include IP address (or proxy server), device and application identification numbers, location, browser type, Internet service provider and/or mobile carrier, the pages and files viewed, searches, operating system and system configuration information and date/time stamps associated with your usage. This information is used to analyze overall trends, to help us provide and improve our websites and to guarantee their security and continued proper functioning.
7.2.2. In addition, we gather certain information automatically as part of your use of the products and services. This information may include IP address (or proxy server), device and application identification numbers, location, browser type, Internet service provider and/or mobile carrier, the pages and files viewed, searches and other actions you take, operating system and system configuration information and date/time stamps associated with your usage. This information is used to maintain the security of the services, to provide necessary functionality, as well as to improve performance of the services, to assess and improve customer and user experience of the services, to review compliance with applicable usage terms, to identify future opportunities for development of the services, to assess capacity requirements, to identify customer opportunities and for the security of us generally (in addition to the security of our products and services). Some of the device and usage data collected within the services, whether alone or in conjunction with other data, could be personally identifying to you. Please note that this device and usage data is primarily used for the purposes of identifying the uniqueness of each user logging on (as opposed to specific individuals), apart from where it is strictly required to identify an individual for security purposes or as required as part of our provision of the services to our customers (where we act as a processor).
7.3. Cookies, web beacons and other tracking technologies on our website and in email communications
7.3.1. We use cookies and similar technologies such as web beacons, tags and JavaScript, alone or in conjunction with cookies, to compile information about the usage of our websites and interaction with emails from us.
7.3.2. When you visit our websites, we or an authorized third party may place a cookie on your browser and/or device, which collects information, including Personal Data, about your online activities over time and across different sites. Cookies allow us to track usage, determine your browsing preferences and improve and customize your browsing experience.
7.3.3. We use both session-based and persistent cookies on our websites. Session- based cookies exist only during one session and disappear from your computer when you close your browser or turn off your computer. Persistent cookies remain on your computer or device after you close your browser or turn off your computer. You can control the use of cookies at the individual browser level, but choosing to disable cookies may limit your use of certain features or functions on our websites and services.
7.3.4. We also use web beacons on our websites and in email communications. For example, we may place web beacons in marketing emails that notify us when you click on a link in the email that directs you to one of our websites. Such technologies are used to operate and improve our websites and email communications. For instructions on how to unsubscribe from our marketing emails, please see Section 20 below.
7.4. The following describes how we use different categories of cookies and similar technologies and your options for managing the data collection settings of these technologies:
Type of Cookies | Description | Managing Settings |
Required cookies | Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies. If you have chosen to identify yourself to us, we may place on your browser a cookie that allows us to uniquely identify you when you are logged into the websites and to process your online transactions and requests. | Because required cookies are essential to operate the websites, there is no option to opt out of these cookies. |
Functional cookies | Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual. Functional cookies may also be used to improve how our websites function and to help us provide you with more relevant communications, including marketing communications. These cookies collect information about how our websites are used, including which pages are viewed most often. We may use our own technology or third-party technology to track and analyze usage information to provide enhanced interactions and more relevant communications, and to track the performance of our advertisements. For example, we use Google Analytics (“Google Analytics”), a web analytics service provided by Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. You can learn about Google’s privacy practices by going to www.google.com/policies/privacy/partners/ Google Analytics uses cookies to help us analyze how our websites are used, including the number of visitors, the websites from which visitors have navigated to our websites, and the pages on our websites to which visitors navigate. This information is used by us to improve our websites. Konsise may also utilize HTML5 local storage or Flash cookies for the above-mentioned purposes. These technologies differ from browser cookies in the amount and type of data they store, and how they store it. | You can choose to opt out of functional cookies. To change your cookie settings and preferences, including those for functional cookies, click the Cookie Preferences link in the footer of the page. To opt out from data collection by Google Analytics, you can download and install a browser add-on, which is available here. To learn how to control functional cookies via your individual browser settings, click here. To learn how to manage privacy and storage settings for Flash cookies, click here. |
Targeting or Advertising cookies | Targeting or advertising cookies track activity across websites in order to understand a viewer’s interests, and to direct specific marketing to them. Some examples include: cookies used for remarketing, or interest-based advertising. We sometimes use cookies delivered by us or by third parties to show you ads for our products that we think may interest you on devices you use and to track the performance of our advertisements. For example, these cookies collect and remember information such as which browsers have visited our websites. Konsise also contracts with third-party advertising networks that collect IP addresses and other information from web beacons on our websites, from emails and on third-party websites. Advertising networks follow your online activities over time and across different websites or other online services by collecting device and usage data through automated means, including through the use of cookies. These technologies may recognize you across the different devices you use, such as a desktop or laptop computer, smartphone or tablet. Third parties use this information to provide advertisements about products and services tailored to your interests. You may see their advertisements on other websites or mobile applications on any of your devices. This process also helps us manage and track the effectiveness of our marketing efforts. | You can choose to opt out of targeting and advertising cookies. To change your cookie settings and preferences, including those for targeting and advertising cookies, click the Cookie Preferences link in the footer of the page. See Section 8, below, to learn more about these and other advertising networks and your ability to opt out of collection by certain third parties. |
7.5 See Section 8, below, to learn more about these and other advertising networks and your ability to opt out of collection by certain third parties.
8. NOTICES ON BEHAVIORAL ADVERTISING AND OPT-OUT FOR WEBSITE VISITORS
8.1. As described above, we or third parties may place or recognize a unique cookie on your browser when you visit our websites for the purpose of serving you targeted advertising (also referred to as “online behavioral advertising” or “interest-based advertising”). To learn more about targeted advertising and advertising networks please visit the opt-out pages of the Network Advertising Initiative, here, and the Digital Advertising Alliance, here.
8.2. To manage the use of targeting and advertising cookies on this website consult your individual browser settings for cookies. To learn how to manage privacy and storage settings for Flash cookies, click here. Various browsers may also offer their own management tools for removing HTML5 local storage.
9. OPT-OUT FROM THE SETTING OF COOKIES ON YOUR INDIVIDUAL BROWSER
9.1. In addition to utilizing the user preference center, where available, you may opt-out from the collection of non-essential device and usage data on your web browser (see the Section 7, above) by managing your cookies at the individual browser level. In addition, if you wish to opt-out of interest-based advertising click here (or, if located in the European Union, click here). Please note, however, that by blocking or deleting cookies and similar technologies used on our websites, you may not be able to take full advantage of the websites.
9.2. While some internet browsers offer a “do not track” or “DNT” option that lets you tell websites that you do not want to have your online activities tracked, these features are not yet uniform and there is no common standard that has been adopted by industry groups, technology companies or regulators. Therefore, we do not currently commit to responding to browsers’ DNT signals with respect to our websites. We take privacy and meaningful choice seriously and will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.
10. SOCIAL MEDIA FEATURES
10.0 Our websites may use social media features, such as the Facebook “like” button, the “Tweet” button and other sharing widgets (“Social Media Features”). You may be given the option by such Social Media Features to post information about your activities on a website to a profile page of yours that is provided by a third-party social media network in order to share with others within your network. Social Media Features are either hosted by the respective social media network or hosted directly on our website. To the extent the Social Media Features are hosted by the respective social media networks and you click through to these from our website, the latter may receive information showing that you have visited our website. If you are logged in to your social media account, it is possible that the respective social media network can link your visit to our websites with your social media profile.
10.2 We also may allow you to log in to certain of our websites using sign-in services such as Facebook Connect. These services may authenticate your identity and provide you the option to share certain Personal Data from these services with us such as your name and email address to pre-populate our sign-up form.
10.3 Your interactions with Social Media Features are governed by the privacy policies of the companies providing the relevant Social Media Features.
11. TELEPHONY LOG INFORMATION
11.1. If you use certain features of our services on a mobile device, we may also collect telephony log information (like phone numbers, time and date of calls, duration of calls, SMS routing information and types of calls), device event information (such as crashes, system activity, hardware settings, browser language), and location information (through IP address, GPS, and other sensors that may, for example, provide us with information on nearby devices, Wi-Fi access points and cell towers).
12. PURPOSES FOR WHICH WE PROCESS PERSONAL DATA AND THE LEGAL BASES ON WHICH WE RELY
12.1 We collect and process your Personal Data for the purposes and on the legal bases identified in the following:
12.1.1 Providing our websites and services: We process your Personal Data to perform our contract with you for the use of our websites and services and to fulfill our obligations under applicable terms of use/service; where we have not entered into a contract with you, we base the processing of your Personal Data on our legitimate interest to operate and administer our websites and to provide you with content you access and request (e.g., to download content from our websites);
12.1.2. Promoting the security of our websites and services: We process your Personal Data by tracking use of our websites and services, creating aggregated, non-personal data, verifying accounts and activity, investigating suspicious activity and enforcing our terms and policies, to the extent this is necessary for our legitimate interest in promoting the safety and security of the services, systems and applications and in protecting our rights and the rights of others
12.1.3 Providing necessary functionality: We process your Personal Data to perform our contract with you for the use of our websites and services; where we have not entered into a contract with you, we base the processing of your Personal Data on our legitimate interest to provide you with the necessary functionality required during your use of our websites and services;
12.1.4. Managing user registrations: If you have registered for an account with us, we process your Personal Data by managing your user account for the purpose of performing our contract with you according to applicable terms of service;
12.1.5. Handling contact and user support requests: If you fill out a “Contact Me” web form or request user support, or if you contact us by other means including via a phone call, we process your Personal Data to perform our contract with you and to the extent it is necessary for our legitimate interest in fulfilling your requests and communicating with you;
12.1.6. Managing event registrations and attendance: We process your Personal Data to plan and host events or webinars for which you have registered or that you attend, including sending related communications to you, to perform of our contract with you;
12.1.7. Managing contests or promotions: If you register for a contest or promotion, we process your Personal Data to perform our contract with you. Some contests or promotions have additional rules containing information about how we will process your Personal Data;
12.1.8. Managing payments: If you have provided financial information to us, we process your Personal Data to verify that information and to collect payments to the extent that doing so is necessary to complete a transaction and perform our contract with you;
12.1.9. Developing and improving our websites and services: We process your Personal Data to analyze trends and to track your usage of and interactions with our websites and services to the extent it is necessary for our legitimate interest in developing and improving our websites and services and providing our users with more relevant content and service offerings, or where we seek your valid consent;
12.1.10. Assessing and improving user experience: We process device and usage data as described in Section 7.2 above, which in some cases may be associated with your Personal Data, in order to analyze trends in order to assess and improve the overall user experience to the extent it is necessary for our legitimate interest in developing and improving the service offering, or where we seek your valid consent;
12.1.11. Reviewing compliance with applicable usage terms: We process your Personal Data to review compliance with the applicable usage terms in our customer’s contract to the extent that it is in our legitimate interest to ensure adherence to the relevant terms;
12.1.12 Assessing capacity requirements: We process your Personal Data to assess the capacity requirements of our services the extent that it is in our legitimate interest to ensure that we are meeting the necessary capacity requirements of our service offering;
12.1.13. Identifying customer opportunities: We process your Personal Data to assess new potential customer opportunities to the extent that it is in our legitimate interest to ensure that we are meeting the demands of our customers and their users’ experiences;
12.1.14. Registering office visitors: We process your Personal Data for security reasons, to register visitors to our offices and to manage non-disclosure agreements that visitors may be required to sign, to the extent such processing is necessary for our legitimate interest in protecting our offices and our confidential information against unauthorized access;
12.1.15. Displaying personalized advertisements and content: We process your Personal Data to conduct marketing research, advertise to you, provide personalized information about us on and off our websites and to provide other personalized content based upon your activities and interests to the extent it is necessary for our legitimate interest in advertising our websites or, where necessary, to the extent you have provided your prior consent;
12.1.16. Sending marketing communications: We will process your Personal Data to send you marketing information, product recommendations and other non- transactional communications (e.g., marketing newsletters, telemarketing calls, SMS, or push notifications) about us and our affiliates and partners, including information about our products, promotions or events as necessary for our legitimate interest in conducting direct marketing or to the extent you have provided your prior consent (please see the “Your rights relating to your Personal Data” section, below, to learn how you can control the processing of your Personal Data by Supplier for marketing purposes); and
12.1.17. Complying with legal obligations: We process your Personal Data when cooperating with public and government authorities, courts or regulators in accordance with our legal obligations under applicable laws to the extent this requires the processing or disclosure of Personal Data to protect our rights or is necessary for our legitimate interest in protecting against misuse or abuse of our websites, protecting personal property or safety, pursuing remedies available to us and limiting our damages, complying with judicial proceedings, court orders or legal processes or to respond to lawful requests.
12.2. Where we need to collect and process Personal Data by law, or under a contract we have entered into with you, and you fail to provide the required Personal Data when requested, we may not be able to perform our contract with you.
13. WHO DO WE SHARE PERSONAL DATA WITH?
13.1. We may share your Personal Data as follows:
13.1.1. With our contracted service providers, who provide services such as IT and system administration and hosting, credit card processing, research and analytics, marketing, customer support and data enrichment for the purposes and pursuant to the legal bases described above; such service providers comprise companies located in the countries in which we operate or offer products or services;
13.1.2. If you use our websites to register for an event or webinar organized by one of our affiliates, with the affiliate to the extent this is required on the basis of the affiliate’s contract with you to process your registration and ensure your participation in the event; in such instances, our affiliate will process the relevant Personal Data as a separate controller and will provide you with further information on the processing of your Personal Data, where required;
13.1.3. If you attend an event or webinar organized by us, or download or access an asset on our website, with sponsors of the event. If required by applicable law, you may consent to such sharing via the registration form or by allowing your attendee badge to be scanned at a sponsor booth. In these circumstances, your information will be subject to the sponsors’ privacy statements. If you do not wish for your information to be shared, you may choose to not opt-in via event/webinar registration;
13.1.4. If you use our services as an authorized user, with your affiliated customer responsible for your access to the services to the extent this is necessary for verifying accounts and activity, investigating suspicious activity, or enforcing our terms and policies;
13.1.5. With sponsors of contests or promotions for which you register;
13.1.6. With third-party social media networks, advertising networks and websites, which usually act as separate controllers, so that we can market and advertise on third party platforms and websites;
13.1.7 In individual instances, with professional advisers acting as processors or joint controllers including lawyers, bankers, auditors and insurers based in countries in which we operate or offer products or services, who provide consultancy, banking, legal, insurance and accounting services, and to the extent we are legally obliged to share or have a legitimate interest in sharing your Personal Data;
13.1.8. With affiliates within our corporate group and companies that we acquire in the future when they are made part of our corporate group, to the extent such sharing of data is necessary to fulfill a request you have submitted via our websites or for customer support, marketing, technical operations and account management purposes; and
13.1.9. If we are involved in a merger, reorganization, dissolution or other fundamental corporate change, or sell a website or business unit, or if all or a portion of our business, assets or stock are acquired by third party, with such third party. In accordance with applicable laws, we will use reasonable efforts to notify you of any transfer of Personal Data to an unaffiliated third party.
13.2 We may also share anonymous usage data with Supplier’s service providers for the purpose of helping Supplier in such analysis and improvements. Additionally, Supplier may share such anonymous usage data on an aggregate basis in the normal course of operating our business; for example, we may share information publicly to show trends about the general use of our services.
13.3. Any Personal Data or other information you choose to submit in communities, forums, blogs or chat rooms on our websites may be read, collected and used by others who visit these forums, depending on your account settings.
13.4. For further information on the recipients of your Personal Data, please contact us by using the information in Section 24, below.
14. INTERNATIONAL TRANSFER OF PERSONAL DATA
14.1 Your Personal Data may be collected, transferred to and stored by us in the United Kingdom, Europe (EEA) and the United States and by our affiliates and third parties that are based in other countries.
14.2 Therefore, your Personal Data may be processed outside your jurisdiction, and in countries that are not subject to an adequacy decision by the European Commission or your local legislature and/or regulator, and that may not provide for the same level of data protection as your jurisdiction, such as the EEA. We ensure that the recipient of your Personal Data offers an adequate level of protection, for instance by entering into the appropriate back-to-back agreements and, if required, standard contractual clauses for the transfer of data as approved by the European Commission (Art. 46 GDPR), or we will ask you for your prior consent to such international data transfers.
15. CHILDREN
15.1. Our websites are not directed at children. We do not knowingly collect Personal Data from children under the age of 16. If you are a parent or guardian and believe your child has provided us with Personal Data without your consent, please contact us by using the information in Section 24, below, and we will take steps to delete such Personal Data from our systems.
16. HOW LONG DO WE KEEP YOUR PERSONAL DATA?
16.1. We may retain your Personal Data for a period of time consistent with the original purpose of collection. We determine the appropriate retention period for Personal Data on the basis of the amount, nature and sensitivity of your Personal Data processed, the potential risk of harm from unauthorized use or disclosure of your Personal Data and whether we can achieve the purposes of the processing through other means, as well as on the basis of applicable legal requirements (such as applicable statutes of limitation).
16.2. After expiry of the applicable retention periods, your Personal Data will be deleted. If there is any data that we are unable, for technical reasons, to delete entirely from our systems, we will put in place appropriate measures to prevent any further use of such data.
16.3. For further information on applicable data retention periods, please contact us by using the information in Section 24, below.
17. YOUR RIGHTS RELATING TO YOUR PERSONAL DATA
17.1 You have certain rights relating to your Personal Data, subject to local data protection laws. Depending on the applicable laws and, in particular, if you are located in the EEA, these rights may include:
17.1.1. To access your Personal Data held by us (right to access);
17.1.2. To rectify inaccurate Personal Data and, taking into account the purpose of processing the Personal Data, ensure it is complete (right to rectification);
17.1.3. To erase/delete your Personal Data, to the extent permitted by applicable data protection laws (right to erasure; right to be forgotten);
17.1.4. To restrict our processing of your Personal Data, to the extent permitted by law (right to restriction of processing);
17.1.5. To transfer your Personal Data to another controller, to the extent possible (right to data portability);
17.1.6. To object to any processing of your Personal Data carried out on the basis of our legitimate interests (right to object). Where we process your Personal Data for direct marketing purposes or share it with third parties for their own direct marketing purposes, you can exercise your right to object at any time to such processing without having to provide any specific reason for such objection;
17.1.7. Not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects (“Automated Decision-Making”).; and
17.1.8. To the extent we base the collection, processing and sharing of your Personal Data on your consent, to withdraw your consent at any time, without affecting the lawfulness of the processing based on such consent before its withdrawal.
17.2. If you are a resident of California, under the age of 18 and have registered for an account with us, you may ask us to remove content or information that you have posted to our websites. Please note that your request does not ensure complete or comprehensive removal of the content or information, because, for example, some of your content may have been reposted by another visitor to our websites.
18. HOW TO EXERCISE YOUR RIGHTS
18.1. To exercise your rights, please contact us by using the information in Section 24, below. We try to respond to all legitimate requests within one month and will contact you if we need additional information from you in order to honor your request. Occasionally it may take us longer than a month, taking into account the complexity and number of requests we receive. If you are an employee of a customer, we recommend you contact your company’s system administrator for assistance in correcting or updating your information.
18.2. Some registered users may update their user settings, profiles, organization settings and event registrations by logging into their accounts and editing their settings or profiles.
18.3 To update your billing information, discontinue your account and/or request return or deletion of your Personal Data and other information associated with your account, please contact us by using the information in Section 24, below.
19. YOUR RIGHTS RELATING TO CUSTOMER DATA
19.1 As described above, we may also process Personal Data submitted by or for a customer to our cloud products and services. To this end, if not stated otherwise in this Privacy Statement or in a separate disclosure, we process such Personal Data in the role of a mere processor on behalf of a customer (and/or its affiliates) who is the responsible controller of the Personal Data concerned. We are not responsible for and have no control over the privacy and data security practices of our customers, which may differ from those set forth in this Privacy Statement. If your data has been submitted to us by or on behalf a Supplier customer and you wish to exercise any rights you may have under applicable data protection laws, please inquire with the applicable customer directly. Because we may only access a customer’s data upon instruction from that customer, if you wish to make your request directly to us, please provide to us the name of the Supplier customer who submitted your data to us. We will refer your request to that customer and will support them as needed in responding to your request within a reasonable timeframe.
20. YOUR PREFERENCES FOR EMAIL AND SMS MARKETING COMMUNICATIONS
20.1. If we process your Personal Data for the purpose of sending you marketing communications, you may manage your receipt of marketing and non-transactional communications from Supplier by clicking on the “unsubscribe” link located on the bottom of Supplier marketing emails, by replying or texting ‘STOP’ if you receive Supplier SMS communications, or by unsubscribing here. Please note that, notwithstanding the above, you will continue to receive marketing and non- transactional communications unless you manage your receipt of such communications by clicking on the “unsubscribe” link located on the bottom of marketing emails, replying or texting ‘STOP’ to SMS communications.
20.2. Please note that opting out of marketing communications does not opt you out of receiving important business communications related to your current relationship with us, such as communications about your subscriptions or event registrations, service announcements or security information.
21. YOUR PREFERENCES FOR TELEMARKETING COMMUNICATIONS
21.1. If you want your phone number to be added to our internal Do-Not-Call telemarketing register, please contact us by using the information in Section 24, below. Please include your first name, last name, company and the phone number you wish to add to our Do-Not-Call register.
12.2. Alternatively, you can always let us know during a telemarketing call that you do not want to be called again for marketing purposes.
22. HOW WE SECURE YOUR PERSONAL DATA
22.1. We take precautions including organizational, technical and physical measures to help safeguard against the accidental or unlawful destruction, loss, alteration and unauthorized disclosure of, or access to, the Personal Data we process or use.
22.2. While we follow generally accepted standards to protect Personal Data, no method of storage or transmission is 100% secure. You are solely responsible for protecting your password, limiting access to your devices and signing out of websites after your sessions. If you have any questions about the security of our websites, please contact us by using the information in Section 24, below.
23. CHANGES TO THIS PRIVACY STATEMENT
23.1. We will update this Privacy Statement from time to time to reflect changes in our practices, technologies, legal requirements and other factors. If we do, we will update the “effective date” at the top of this Privacy Statement. If we make a material update, we may provide you with notice prior to the update taking effect, such as by posting a conspicuous notice on our website or by contacting you using the email address you provided.
23.2. We encourage you to periodically review this Privacy Statement to stay informed about our collection, processing and sharing of your Personal Data.
24. CONTACTING US
24.1. To exercise your rights regarding your Personal Data, or if you have questions regarding this Privacy Statement or our privacy practices please fill out this form or email us at info@konsise.com
24.2 We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If, however, you believe that we have not been able to assist with your complaint or concern, and you are located in the EEA, you have the right to lodge a complaint with the competent supervisory authority.