On the 25th of May 2018, the applicable Personal Data Acts will be replaced by the EU-regulation “General Data Protection Regulation” (GDPR). The GDPR protects the European Union data subjects' fundamental right to privacy and the protection of personal data. The regulation introduces requirements that will raise and harmonize standards for data protection, security as well as compliance.
As part of the business of DigitalRoute, DigitalRoute from time to time collects and process information, by which individuals can be identified (“Personal Data”). DigitalRoute constantly aims to stay updated on the news concerning GDPR and is committed to privacy and will only process information in accordance with this policy, hence in accordance with GDPR. This policy applies to all of DigitalRoute´s websites and interactions.
This information may be subject to change when the upcoming EU Privacy Regulation enters into force.
DigitalRoute is committed to ensuring that Personal Data is secure. DigitalRoute has therefore implemented appropriate technical and organisational measures to be able to demonstrate that the processing is performed in accordance with the GDPR. To prevent unauthorised access or disclosure, DigitalRoute has put in place appropriate physical, electronic and managerial procedures to safeguard and secure the Personal Data collected.
What Personal Data DigitalRoute Collects
DigitalRoute may collect and process the following, including but not limited to, Personal Data of current and prospective customers and their representatives, employees and job candidates, partners, individuals who agree to participate in market research and website users (collectively referred to in this policy as “Individuals”):
DigitalRoute collects information such as the name, company, title and email addresses of Individuals who request DigitalRoute´s information materials or reports, or engagement with DigitalRoute within EU/EES, and individuals engaged in services offered by DigitalRoute. From individuals seeking employment with DigitalRoute within EU/EES, DigitalRoute collects information such as the name, telephone, email address and CV including employment history and information.
In dealing with different Individuals for events, trainings and conferences etc, DigitalRoute also obtains information about the business contacts, including name, title, full address, telephone, fax number, date of arrival, food preferences and allergies, copy of passport and/or passport number, citizenship (when a welcome letter for the visa application is needed) clothing size (clothing size only very rarely when branded clothings are being handed out) and email address.
In certain situation, e.g. to provide services to employees or business contacts , both in foreign and home offices, or to our recruiting candidates, we will collect other data, including birth date and birth place, gender, education, occupation, employment history and information, information about activities, citizenship, visa information, identification numbers, financial situation, account numbers, family information, banking details, compensation and payroll information, leave of absence information, dependents or beneficiaries (including name, address, email and phone), emergency contacts, background check information, food preferences and allergies and health information.
DigitalRoute’s use and sharing of personal data collected
DigitalRoute may use collected Personal Data for the following purposes:
DigitalRoute will not sell or lease Individuals’ Personal Data to third parties
For the purposes listed above, DigitalRoute may share Personal Data with authorized vendors, agents and representatives, including direct marketing agents. Some of these data processors may be based outside of the European Economic
The European Commission Standard Contractual Clauses (“Model Clauses”), governing the transfer of personal data to countries whose national laws do not provide an adequate level of data protection, have been ruled by the European Commission to offer sufficient safeguards for the protection of individuals’ privacy and fundamental rights and freedoms, including the ability to exercise those rights. Data processors to DigitalRoute will be contractually committed to process information in accordance with the provisions of European data protection legislation, and the transfer will be made in accordance with written agreements in the form of the Model Clauses.
Individuals’ Rights to Update, Correct or Request Personal Data
In accordance with GDPR and other applicable data protection laws, Individuals are entitled to exercise their privacy rights as an Individual. Including but not limited to requesting details regarding the Personal Data that DigitalRoute holds and/or process about them as well as requesting their data to be transferred to a third party, and/or requesting incorrect or incomplete information to be corrected.
Please do so in writing to or email the contact address stated below as soon as possible.
From time to time, DigitalRoute may use Personal Data for new, unanticipated uses not previously disclosed in this policy. However, such new processing will always be compatible with the purpose for which the Personal Data was collected. If its practices regarding Personal Data change at some time in the future, DigitalRoute will post the policy changes www.digitalroute.com/privacy-policy to notify Individuals of these changes and provide the ability to "opt out" or unsubscribe from these new uses. If Individuals are concerned about how Personal Data is used, please check such webpage regularly.
General Counsel/Chief Legal Officer/