Purpose
Data Intensity is committed to safeguarding the privacy of individual customers, customer representatives and any persons also known as a Data Subject who share personal data with us in the course of our providing services. Data Intensity has made public this Privacy Notice to provide you with information about the personal data we collect and your rights with regards the processing of your data.
Scope
This notice applies to the processing of personal data and sensitive personal data that Data Intensity receives about its customers in the course of providing products and services.
Regulatory Compliance
Data Intensity has aligned with the EU General Data Protection Regulation (GDPR) regarding the collection, use, and retention of personal information from not just customers residing in the UK or European Union member countries, but all customers globally. Data Intensity are also compliant with and make accommodations for US Privacy Acts: Health Insurance Portability and Accountability Act (HIPAA) and the California Consumer Privacy Act (CCPA)
Data Privacy Framework
Data Intensity complies with the EU-U.S. Data Privacy Framework (including UK Extension) and Swiss-U.S. Data Privacy Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union, United Kingdom and Switzerland to the United States. Data Intensity has certified to the U.S. Department of Commerce that it adheres to the Data Privacy Framework Principles. If there is any conflict between the terms in this privacy policy and the Data Privacy Framework Principles, the Data Privacy Framework Principles shall govern. To learn more about the Data Privacy Framework program, and to view our certification, please visit https://www.dataprivacyframework.gov.
Data Protection Officer and How to Contact Us
Data Intensity has designated a Data Protection Officer to oversee its compliance with the GDPR as well as all other applicable data protection laws. If you have any concerns about the privacy of your personal data, you can contact us as follows:
Privacy and Data Protection Officer: Christopher Beatty
Phone Number: +1 833-746-8506
Email: privacy@dataintensity.com
Mailing Address:
Data Intensity
ATTN: Privacy Department
535 Madison Avenue
4th Floor
Covington, KY 41011
Collection and Use of Personal Data
Data Intensity provides various solutions to its customers who purchase its products or services. Data Intensity collects personal data from individual customers when they purchase products, register on the website, log-in to their account, complete surveys, request information or otherwise communicate with us.
Data Processor Relationship
For certain products and services, Data Intensity will act as a service provider. In our capacity as a service provider, we will receive, store, and process any form of personal data including sensitive personal data. In such cases, Data Intensity are acting as a Data Processor and will process the personal information on behalf of and under the direction of our partners and/or agents who are the Data Controller. The information that we collect from our individual customers in this capacity is used for managing transactions, reporting, invoicing, renewals, other operations related to providing services to the individual customer, and as otherwise requested by our partners and/or agents.
Data Intensity personnel may access and use personal data only if they are authorized to do so and only for the purpose for which they are authorized.
Contractual Obligation
The personal data that we collect may vary based on the individual customer’s interaction with our website and request for our services. As a general matter, Data Intensity collects the following types of personal data from its individual customers: their name, title, work email address, work postal address, work telephone number, and company name. Individual customers have the option to log into their accounts online and to request services online or over the phone, we will collect information that they choose to provide to us through these portals. Data Intensity collects and processes this data under the lawful basis of contractual obligation to allow us to coordinate with the individuals regarding potential and provided services.
Consent
When individual customers use our services online, we will collect their IP address and browser type. We may associate IP address and browser type with a specific customer. We may also collect personal data from persons who contact us through our website to request additional information; in such a situation, we would collect contact information (as discussed above) and any other information that the person chooses to submit through our website under the lawful basis of consent.
Marketing Consent
The information that we collect from individual customers is used for selling the products and services they buy from us, managing transactions, reporting, invoicing, renewals, other operations related to providing services and products to the individual customer. Data Intensity does not resell any marketing contact data to any other party, however we may utilize 3rd Party marketing companies to perform marketing communications. Our marketing activities are carried out under the lawful basis of consent of the customer or potential customer.
Legal Obligation
Data Intensity will also process personal data to satisfy governmental reporting, tax, and other requirements (e.g., import/export) otherwise required by law under the lawful basis of legal obligation.
Sensitive Data
Data Intensity does not ask for or intentionally collect sensitive personal data from its individual customers but may act as a data processor of customers sensitive personal data while providing services.
Automated Processing
Data Intensity does not perform automated processing on data from its individual customers but may act as a data processor of customers systems that make automated decisions based on the information provided to them by their customers.
Disclosures / Onward Transfers of Personal Data
Except as otherwise provided herein, Data Intensity discloses personal data only to third parties who reasonably need access to the data only for the scope of the initial transaction and for no other purposes. The recipients must agree to abide by confidentiality obligations set by Data Intensity.
Data Intensity may provide personal data to third parties that act as agents, consultants, and contractors to perform tasks on behalf of and under our instructions. Such third parties must agree to process personal data only for the purposes for which they have been engaged by Data Intensity.
Data Intensity also may disclose personal data for other purposes or to other third parties when a data subject has consented to or requested disclosure. Data Intensity may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements. Data Intensity is liable for appropriate onward transfers of personal data to third parties.
Data Integrity and Security
Data Intensity uses reasonable efforts to maintain the accuracy and integrity of Personal Data and to update it as appropriate. Data Intensity has implemented physical and technical safeguards to protect Personal Data from loss, misuse, unauthorized access, disclosure, alteration, or destruction.
Data Retention
Data Intensity maintains provisions in its policies detailing the maximum retention period for personal data on the various categories of data subject. The retention periods applied to personal data are based on business, legal and regulatory requirements. Typically, Data Intensity will retain customer personal data for as long as it is required in the provisioning of services to them. Additionally, Data Intensity maintains procedures for the secure purging of personal data once the retention period has passed.
Transparency Report
On request Data Intensity will share a transparency report detailing the number of requests or orders from governments and courts for access to customer data. When a request is received, Data Intensity reviews it thoroughly and will only provide information within the scope and authority of the request. Data Intensity also ensures that the request follows company policies and applicable law.
Your Data Subject Rights
Individual customers have the right to know what personal data (about them) is processed on the databases and systems managed by Data Intensity and to ensure it is accurate and relevant for the purposes for which Data Intensity collected it. Individual customers may review their own personal data to correct, erase, or block any data that is incorrect. Upon reasonable request Data Intensity allows individual customers access to their personal data, in order to correct or amend such data if applicable. Individual customers may edit their personal data by logging into their account profile or by contacting Data Intensity by phone or email, or by submitting the GDPR Personal Data Request form.
Additionally, the data subject may ask to obtain and reuse their personal data in a safe and secure way. The data will be provided in a structured, commonly used, and machine-readable format.
In making modifications to their Personal Data, Data Subjects must provide only truthful, complete, and accurate information. To request erasure of Personal Data, Individual Customers should submit a request to the Data Intensity by phone or email, or by submitting the GDPR Personal Data Request form.
Requests for Personal Data
Data Intensity will track each of the following and will provide notice to the appropriate parties under law and contract when either of the following circumstances arise:
- (a) legally binding request for disclosure of the Personal Data by a law enforcement authority unless prohibited by law or regulation or;
- (b) requests received from the Data Subject. If Data Intensity receives a request for access to his/her Personal Data from an Individual Customer, then, unless otherwise required under law or by contract with such Individual Customer, Data Intensity will refer the Data Subject to the Individual Customer.
Satisfying Requests for Access Modification Correction and Restriction
Data Intensity will endeavor to respond in a timely manner to all reasonable requests to view, modify, or inactivate personal data. You may use the GDPR Personal Data Request form to submit such requests.
Individual customer’s may also update your personal information tied to a personal Data Intensity account by using our self-service tool or upon request by contacting your Customer Success Manager or emailing privacy@dataintensity.com. If you become aware that your personal information with Data Intensity is not complete and accurate, you should promptly update or notify us to update your information.
Individuals may request the restriction or suppression of personal data; however this only applies in certain circumstances. When processing is restricted, Data Intensity may store but not utilize the data subject’s personal data. Data Intensity will inform any data subject prior to lifting restrictions on processing.
Enforcement and Dispute Resolution
In compliance with GDPR, the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, Data Intensity commits to resolve GDPR and DPF Principles-related complaints about our collection and use of your personal information. EU and UK individuals and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on GDPR, the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF should first contact the Data Intensity Privacy Office at: privacy@dataintensity.com. Additional contact details can be found above in the contact section.
Furthermore, in compliance with GDPR, the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Data Intensity commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.
If you do not receive timely acknowledgement of your complaint, or if your complaint is not satisfactorily addressed by Data Intensity, UK individuals may bring a complaint before the UK ICO. Information about how to file a complaint before the UK ICO can be found here on the ICO website. Finally, as a last resort and in limited situations, EU individuals may seek redress from the Data Privacy Framework, a binding arbitration mechanism through the United States Federal Trade Commission (FTC). Data Intensity is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).
Cookies
“Cookies” are small text files that are placed on your computer by websites that you visit. They are widely used to make websites work more efficiently. Data Intensity and its marketing partners or suppliers may use cookies or other technologies when you interact with the website or use their products. If you do not wish to utilize cookies, please adjust your browser settings appropriately but the functionality of this or other sites may be adversely impacted. To learn more about what sort of cookies our site uses and how we use them, please see our detailed Cookie Policy.
Third-Party Sites
Some of our services are provided through sites that bear our partners’ or suppliers’ names and trademarks and are not in our control, and this website may contain links that take you to other websites that are also not in our control. Certain of those other websites may provide products or services to you directly or on our behalf. Data Intensity is not responsible for any aspect of other websites, including, without limitation, the privacy practices, products, services, or content of such websites. This Privacy Notice does not apply to such other websites. Your activity and the information that you provide when visiting these websites will be subject to the privacy notice and terms and conditions of the website owner.