Logo

Privacy Policy

Insafehands International Ltd

Effective Date: May 25, 2018

GDPR Compliant
Table of Contents

This privacy policy (Amended in compliance with the new General Data Protection Regulation - GDPR May 2018), effective as of 25th May 2018, is a commitment made by and between Insafehands International Ltd on behalf of itself and all individuals and or entities that we deal with in the ordinary course of business ("Customer").

This policy outlines our commitment to protecting your personal data in accordance with GDPR regulations and ensuring transparency in how we collect, process, and store your information.

A. Definitions

All capitalized terms used but not defined herein shall have the same meaning as set forth in this policy document. Lower case terms used but not defined in this GDPR Guidelines, such as "personal data", "personal data breach", "processing", "controller", "processor", "supervisory authority" and "data subject", will have the same meaning as set forth in Article 4 of the GDPR.

B. Scope and Roles

This GDPR policy applies to the collection, storage and processing of personal data by Insafehands International Ltd on behalf of Customers. In this context, Customer is the controller or possessor of Customer personal data and Insafehands International Ltd is the collector and processor of such personal data.

C. Data Processing

Key Processing Principles:

Where Insafehands International Ltd is carrying out processing on behalf of Customer, we implement appropriate technical and organizational measures to ensure processing meets GDPR requirements and protects data subject rights.

Our commitments include:

  • Processing personal data only on documented instructions or implied consent from Customer
  • Ensuring authorized persons commit to confidentiality
  • Taking all measures required pursuant to Article 32 of the GDPR
  • Assisting Customer with data subject rights requests
  • Deleting or returning personal data upon service termination

D. Data Processing Details

Types of Personal Data
  • • Full name and contact information
  • • Email and postal addresses
  • • Telephone and mobile numbers
  • • Business cards and job titles
  • • Username and passwords
  • • Education and certifications
  • • Professional background
  • • Government issued identification
  • • Financial information (when required)
  • • IP addresses and device data
Categories of Data Subjects
  • • Representatives and end users
  • • Employees and contractors
  • • Temporary personnel
  • • Affiliates and partners
  • • Regulators
  • • Other individuals whose data is submitted by customers

Data Access:

Customers can view the details we hold by clicking the "my account" button after signing in to their customer portal.

Sub-processing

Insafehands International Ltd may engage other processors for processing Customer personal data in accordance with GDPR safeguards. We maintain a list of such processors and provide at least 14 days notice before authorizing any new processor.

Customers may object to new processors without penalty by initiating our dispute resolution process.

Data Subject Rights

We promptly notify Customers of any data subject requests and reasonably cooperate to fulfill GDPR obligations. Customers can opt out of data collection and processing activities, provided it doesn't violate regulatory requirements.

Data Transfer

We ensure that personal data transfers from the UK or EEA to countries without adequacy decisions are subject to appropriate safeguards providing adequate protection in accordance with GDPR requirements.

Security of Data Collection and Processing

Technical Measures
  • • Pseudonymisation and encryption
  • • Ongoing confidentiality and integrity
  • • Timely data restoration capabilities
  • • Regular security testing and assessment
Organizational Measures
  • • Staff confidentiality commitments
  • • Access controls and authorization
  • • Risk assessment procedures
  • • Incident response protocols

Personal Data Breach

We will notify Customers without undue delay after becoming aware of a personal data breach and reasonably respond to requests for further information to help fulfill obligations under Articles 33 and 34 of the GDPR.

Audit

Audits shall be:

  • • Subject to appropriate confidentiality undertakings
  • • Conducted no more than twice per year (unless non-compliance is suspected)
  • • Performed upon thirty (30) days written notice
  • • Conducted at mutually agreed times and in agreed manner

Conflict

In case of conflict between this GDPR Guidelines and other terms, this policy will control to the extent required by law.

Jurisdiction

This policy is governed by UK/EEA member state law, with exclusive jurisdiction primarily assumed to be the UK/EEA member state of the customer.

Contact Information

Data Protection Officer

Insafehands International Ltd

Izabella House 24-26 Regent Place, City Centre Birmingham B1 3NJ England
+44 121 752 2018
info@insafehands.com

Authorized representative: CEO - Insafehands International Ltd

By using our services, you consent to this privacy policy. You have the right to opt out of data collection activities as long as it doesn't violate regulatory requirements.