GDPR compliant Privacy Policy
All there is to know
Effective date: 1 October 2024
Introduction
Flairr ("we," "our," or "us") is committed to protecting your personal data and respecting your privacy.
This Privacy Policy outlines how we collect, use, and safeguard personal data when acting as a data processor on behalf of our clients (data controllers) in accordance with the General Data Protection Regulation (GDPR).
Our role as data processor
We act as a data processor, processing personal data on behalf of our clients (data controllers) in accordance with their instructions and the GDPR.
Our processing activities include temporary data storage, analysis, and communication facilitation, involving personal data including names, email addresses, and telephone numbers.
We implement all the appropriate security measures to protect this data and do not retain it beyond the period specified by our clients.
For any requests regarding your personal data, please contact the relevant data controller directly.
We are committed to assisting our clients in responding to such requests as mandated by GDPR.
Data collection and use
As a data processor, we do not collect personal data directly from individuals. All personal data we process is provided by our clients, the data controllers, who determine the purpose and legal basis for processing. We process this data solely to fulfill our contractual obligations to our clients.
Data security
We implement all the appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.
These measures include:
Access controls: Restricting access to personal data to authorized personnel only.
Encryption: Using encryption technologies to protect data during transmission and at rest.
Audits: Conducting regular security assessments to identify and mitigate potential
vulnerabilities.
Employee Training: Providing ongoing training to employees on data protection and security best practices.
Data Retention
We retain personal data only for as long as instructed by our clients and as necessary to fulfill our contractual obligations. Upon completion of our services or at the request of the data controller, we securely delete or return the personal data in accordance with our agreements and applicable laws.
Data subject rights
As a data processor, we do not have a direct relationship with individuals whose personal data we process. If you wish to exercise any of your rights under GDPR, such as access, rectification, erasure, or objection, please contact the relevant data controller (our client) directly. We will assist our clients in responding to such requests as required by GDPR.
International Data transfers
We may transfer personal data to countries outside the European Economic Area (EEA) as part of our processing activities. In such cases, we ensure that appropriate safeguards are in place to protect the personal data, such as Signed Data Processing Agreements containing Standard Contractual Clauses approved by the European Commission or other legally recognized mechanisms.
Updates to this privacy policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on this page, and where appropriate, notified to our clients. We encourage you to review this Privacy Policy periodically to stay informed about how we process personal data.
Your acceptance of the policy
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.
Contact information
If you have any questions or concerns about this Privacy Policy or our data protection practices, please contact us at: [email protected]
@ Copyright 2024 - Flairr | All rights reserved
