Introduction to GDPR
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018, in the European Union (EU) and European Economic Area (EEA). It sets guidelines for the collection and processing of personal information from individuals who live in the EU and EEA.
At Snag Agent, we are committed to ensuring the privacy and protection of your personal data. This page outlines how we comply with GDPR requirements and what rights you have regarding your personal information.
Our Commitment to GDPR Compliance
Snag Agent is fully committed to GDPR compliance. We have implemented comprehensive measures to ensure that all personal data is processed lawfully, transparently, and securely. Our approach to data protection includes:
1.Data Minimization: We only collect and process personal data that is necessary for the specific purposes we have communicated to you.
2.Lawful Basis for Processing: We ensure that all personal data processing activities have a valid legal basis under GDPR.
3.Transparency: We provide clear information about how we collect, use, and store your personal data.
4.Security Measures: We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.
5.Data Subject Rights: We respect and facilitate your rights as a data subject under the GDPR.
Your Rights Under GDPR
Under the GDPR, you have several rights regarding your personal data:
1. Right to Access
You have the right to request a copy of the personal data we hold about you and to check that we are lawfully processing it.
2. Right to Rectification
You have the right to request correction of any inaccurate personal data we hold about you.
3. Right to Erasure (Right to be Forgotten)
You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purpose it was collected.
4. Right to Restrict Processing
You have the right to request the restriction of processing of your personal data in certain circumstances.
5. Right to Data Portability
You have the right to request the transfer of your personal data to another service provider in a structured, commonly used, and machine-readable format.
6. Right to Object
You have the right to object to the processing of your personal data in certain circumstances, particularly for direct marketing purposes.
7. Rights Related to Automated Decision Making and Profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
How We Process Your Data
Legal Basis for Processing
We process personal data on the following legal bases:
1.Consent: Where you have given clear consent for us to process your personal data for a specific purpose.
2.Contract: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
3.Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.
4.Legitimate Interests: Where processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.
Data We Collect
We may collect and process the following categories of personal data:
•Identity Data: Including first name, last name, username or similar identifier.
•Contact Data: Including email address, telephone number, and address.
•Technical Data: Including internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.
•Usage Data: Including information about how you use our website, products, and services.
•Marketing and Communications Data: Including your preferences in receiving marketing from us and our third parties and your communication preferences.
How We Use Your Data
We use your personal data for the following purposes:
•To provide and maintain our services
•To notify you about changes to our services
•To provide customer support
•To gather analysis or valuable information so that we can improve our services
•To monitor the usage of our services
•To detect, prevent and address technical issues
•To provide you with news, special offers and general information about other goods, services and events which we offer
Data Retention
We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
International Data Transfers
We may transfer your personal data to countries outside the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:
•We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
•Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe (Standard Contractual Clauses).
•Where we use providers based in the US, we may transfer data to them if they are part of an approved framework that ensures they provide similar protection to personal data shared between Europe and the US.
Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this GDPR compliance notice. If you have any questions about this notice, including any requests to exercise your legal rights, please contact our DPO using the details set out below:
Data Protection Officer
Email: dpo@snagagent.com
Address: [Your Physical Address]
Data Breach Notification
In the case of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.
Changes to This GDPR Compliance Notice
We may update our GDPR Compliance Notice from time to time. We will notify you of any changes by posting the new notice on this page and updating the “Last Updated” date at the top of this notice.
How to Contact Us
If you have any questions about this GDPR Compliance Notice, please contact us:
•By email: privacy@snagagent.com
•By phone: [Your Phone Number]
•By mail: [Your Physical Address]
How to Contact the Appropriate Authority
Should you wish to report a complaint or if you feel that we have not addressed your concern in a satisfactory manner, you may contact your local data protection authority. In the EU, you can find your national data protection authority at: