Identity and contact details of your personal data controller:
APPDUAL Inc., to be formed, contact e-mail: email@example.com
(collectively also referred to as "DUAL" or "we"),
DUAL acts as a personal data controller in relation to the Personal Information of Users and individuals visiting the DUAL website or app.
Why do we process personal information? In order to comply with the contract or fulfill legal obligations, DUAL collects personal data obtained from the User when filling out the contact, registration, order, payment and invoicing forms on our site or app.
DUAL further processes the data it receives from the User and other individuals using the DUAL app or visiting our website: cookies, log files (IP address or other online identifiers).
How long do we process personal data? User's personal data are processed for the duration of the contractual relationship and subsequently for the time necessary to ensure the safety of the service and the fulfillment of the obligations arising from the special legal regulations.
DUAL provides the user with data space for the purposes of storing data on DUAL servers. Data of the User may also include personal data of other natural persons (data subjects). In relation to these personal data, DUAL acts as a personal data processor. The User acts as a controller of the personal data. Under Article 28 of the GDPR, the controller and processor (DUAL) conclude a Data Processing Contract, which is described bellow:
The subject of processing: We will process the data that you store on our servers. Usually, personal data of people visiting websites you created with DUAL according to the rules stated in this Contract.
Processing time: DUAL processes personal data for the duration of the contract until the User cancels its account and subsequently for the time necessary to ensure the safety of the service and the fulfillment of the obligations arising from the special legal regulations. Subsequently, all saved user data are deleted.
Nature and purpose of processing: The purpose of the processing is to fulfil the obligations under the Contract, in particular the provision of storage space for the purpose of storing user data via DUAL.
Type and category of processed personal data: We process personal information you store on our servers.
Our responsibilities as a personal data processor: We undertake to:
a) Process personal data only based on the user's documented instructions;
b) Ensure that our authorized personnel who is in contact with personal data is committed to confidentiality;
d) Take into account the nature of the processing and to assist the User through appropriate technical and organizational measures in fulfilling the User's obligation to respond to requests for the exercise of data subjects' rights set forth in Chapter III of the GDPR (Data subject rights);
e) Assist the User in complying with the obligations under Articles 32 to 36 of the GDPR (Privacy of Personal Data), taking into account the nature of the processing of the information available to DUAL;
f) Report to the User any personal data breach without undue delay;
g) Provide the User with all the information necessary to demonstrate that the above obligations have been met and enable the User to check compliance with the above obligations.
What is the purpose of processing and how do we handle the data? DUAL does not interfere with the User's data, and does not change them, disclose them, give access to them or pass them on to third parties (except making them available to state authorities in accordance with the law), except for their storage on DUAL servers, unless stipulated otherwise in the Contract. The sole purpose of handling these personal data is their storage and making them available to the User.
DUAL does not transmit personal information to any other controllers.
Other processors: The user agrees that DUAL will involve other processors in the processing of personal data you store on our servers.
The personal data processors are:
- companies, or physical business entities engaged in accounting which are responsible for carrying out accounting operations;
- companies, or business IT entrepreneurs who are responsible for implementing IT administration and the development of software programs used by DUAL;
- companies, or business-to-business individuals providing server services that are in charge of storing data;
- companies providing payment services;
- companies providing e-mail messaging services.
Personal data may be made available to state authorities under certain conditions.
As a data subject are entitled to: a) the right of access; b) the right to rectification; c) the right to erasure; d) the right to restriction of processing; e) the right to object to processing; f) the right to data portability; g) the right to lodge a complaint with the supervisory authority; h) the right to information concerning the rectification or erasure of personal data or processing restrictions; i) the right to be informed in the event of a breach of security of personal data; j) the right to withdraw consent to the processing of personal data.
Your rights as a data subjects are described in detail in the EU Regulation 2016/679 (GDPR).
You may revoke your consent at any time in writing and redeem the other rights of the Subject by sending your request to the email address firstname.lastname@example.org
Last modified Jun 5, 2018.