1. General information
1.1 Your personal data are collected and processed by Eye4Fraud Inc., with registered seat at 114 Sandford St., Brooklyn NY 11205, United States of America (hereinafter: “Eye4Fraud”, “we”, “us”, “our”). You can contact us via e-mail at [firstname.lastname@example.org]
2. Categories of personal data
2.1 When you visit our Website, we process:
o Technical information, such as the information concerning your device, IP-address, browser type, geographical location and operating system;
o Browsing behaviour, such as the length of your visit, the links you click, the pages you visit and the frequency with which you visit a page.
2.2 When you communicate with us by filling out a contact form on our Website, we only collect the following personal data:
o The personal data that you yourself would provide us by filling in the contact form on our Website (including, but not limited to: first name, surname, e-mail address, the content of your communication and phone number).
3.1 We process your personal data in order to be able to contact you when you fill in the contact form on our Website. To this end, we invoke the necessity of this processing in order to be able to execute the agreements between you and us.
3.2 We may process your personal data in order to be able to comply with Eye4Fraud’s legal obligations and to respond appropriately to any valid request for information and intelligence by government authorities, judicial authorities, police and other competent government bodies. To this end, we invoke the necessity of this processing in order to comply with our legal obligations.
3.3 We may process your personal data to perform statistical analyses, to conduct research, to improve the Website and to develop new commercial services. To this end, we invoke the necessity of the processing in order to protect our own legitimate interests. The interests mentioned here are, on the one hand, the interest in being able to continue to offer a high-quality service and, on the other hand, the interest in being able to develop new products and services.
3.4 We may process your personal data to inform a third party in the event of a possible acquisition, merger, demerger or similar operation. To this end, we invoke the necessity of the processing in order to protect our own legitimate interests. The interest mentioned here relates to our corporate and commercial interest.
3.5 We may process your personal information to serve the legitimate interests of Eye4Fraud or a third party, if your use of the Website constitutes one of the following instances of misuse: (a) a violation of applicable laws and conditions of use or of the rights of third parties; (b) a threat to the security of the Website or the underlying infrastructure, systems and services, such as, but not limited to, as a result of viruses, malware, spyware or other forms of malicious software code; (c) the expression of hatred, discrimination, racism, libel, defamation, defamation or any other expression that is to be construed as harmful, offensive or in any way illegal.
4. Recipients of your personal data
4.1 We will only share your data with the following categories of recipients:
o subcontractors and partners of Eye4Fraud with whom we have an agreement and who help us to provide the Website and the associated functionalities, such as IT service providers;
o third parties with whom we negotiate in the context of mergers, takeovers or similar operations;
o partners with whom we conduct certain scientific and/or statistical studies (in this case, only aggregated personal data will be processed).
5. Location and transfer
5.1 We process your personal data both within and outside the European Economic Area (EEA), including in the USA.
6. Quality assurances
6.1 We do our utmost best to process only those personal data which are necessary to achieve the purposes listed under Article 3 above.
6.2 Your personal data are only processed for as long as needed to achieve the purposes listed under Article 3 above or up until such time where you withdraw your consent for processing them. Your withdrawal of consent may imply that you can no longer use the whole or part of our Website. We will de-identify your personal data when they are no longer necessary for the purposes outlined in Article 3 above, unless there is:
o An overriding interest of Eye4Fraud, or any other third party, in keeping our personal data identifiable; or
o A legal or regulatory obligation or a judicial or administrative order that prevents us from de-identifying them.
6.3 We will take appropriate technical and organizational measures to keep your personal data safe from unauthorized access or theft as well as accidental loss tampering or destruction. Access by our staff members or third parties’ personnel will only be on a need-to-know basis and be subject to strict confidentiality obligations. You understand, however, that safety and security are best efforts obligations which can never be guaranteed.
7. Your rights
7.1 You have the right to request access to all personal data processed by us pertaining to you. We reserve the right to charge a reasonable administrative fee for multiple subsequent requests for access that are clearly submitted for causing nuisance or harm to us. Each request must specify for which processing activity you wish to exercise your right to access and must specify to which data categories you wish to gain access to.
7.2 You have the right to rectification, i.e. to ask that any personal data pertaining to you that are inaccurate, are corrected free of charge. If you submit a request for correction, your request needs to be accompanied of proof of the flawed nature of the data for which correction is asked.
7.3 You have the right to withdraw your earlier given consent for processing of your personal data.
7.4 You have the right to erasure, i.e. to request that personal data pertaining to you be deleted if these data are no longer required in the light of the purposes outlined in Article 3 above or if you withdraw your consent for processing them. However, you need to keep in mind that a request for deletion will be evaluated by us against:
o Our and a third parties’ interests which may override your interests; or
o Legal or regulatory obligations or administrative or judicial orders which may contradict such deletion.
7.5 You have the right to restriction instead of deletion, i.e. to request that we limit the processing of your personal data if:
- We are verifying the accuracy of your personal data; or
- The processing is unlawful, and you oppose the deletion of your personal data; or
- You require your personal data to establish, exercise or defend a legal claim, while we do no longer need your personal data for the purposes listed under Article 3 above; or
- We are verifying whether our legitimate interests override your interests if you exercise your right to object in accordance with Article 7.6.
- The processing is based on our legitimate interest under Article 3.5 above; and
- You are able to prove that there are serious and justified reasons connected with your particular situation that warrant such objection; and
- Our legitimate interests do not override your interests.
However, if the intended processing qualifies as direct marketing, you have the right to object to such processing free of charge and without justification.
7.7 You have the right to data portability, i.e. to receive from us in a structured, commonly-used and machine-readable format all personal data you have provided to us if the processing is based on your consent or a contract with you under Article 3 above.
7.8 If you wish to submit a request to exercise one or more of the rights listed above, you can contact us by sending an e-mail to [email@example.com] An e-mail requesting to exercise a right will not be construed as consent with the processing of your personal data beyond what is required for handling your request. Such request should meet the following conditions:
- State clearly which right you wish to exercise; and
- State clearly the reasons for exercising your right if such is required; and
- Your request should be dated and signed; and
- Your request should be accompanied by a digitally scanned copy of your valid identity card proving your identity. If you use the contact form, we may ask you for your signed confirmation and proof of identity.
We will promptly inform you of having received your request. If the request meets the conditions above and proves valid, we will honor it as soon as reasonably possible and at the latest thirty (30) days after having received your request.
If you have any complaints regarding the processing of your personal data by us, you may always contact us by sending an e-mail to [firstname.lastname@example.org]. If you remain unsatisfied with our response, you are free to file a complaint with the competent data protection authority.