INFORMATION NOTICE ON THE PROTECTION OF PERSONAL DATA
The GDPR General Data Protection Regulation [Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016] is a single legislative framework for the processing of personal data in the Member States of the European Union and replaces the previous “Directive 95/46 / EC” legislation.
Zetacurves.com complies with the terms of GDPR and imposes strict measures to protect the information it stores.
ZetaCurves and GDPR
The GDPR rules can be separated into the following important points. For each point, we explain how zetacurves.com complies. If you have any further questions, please contact us or email us.
Also, all partner companies and providers using zetacurves.com are in line with GDPR terms.
All data collected by zetacurves.com is hosted within the European Union.
All employees with development and maintenance responsibilities at zetacurves.com are fully informed about the GDPR regulations and requirements.
2. Data Protection Processor
Zetacurves.com is not required to designate a DPO.
The Data Protection Officer is MIG GROUP LTD, based in Bulgaria (“Processor”), with the following data:
Name: MIG GROUP LTD
Address: No 17 Gotce Delchev Street
City / Postal: Blagoevgrad / 2850
You can contact the Data Protection Officer (DPO) on the following items:
Name: Georgiadis Michail
Telephone: +30 2311 116 616
3. Information we process
With your consent, we process the following personal information you provide when interacting with the site and using the services and features it provides.
Zetacurves.com does not share or process personal data. The data collected is used for the smooth operation of the website and its transactions. In addition, but only with your optional consent, which is the legal basis for the processing under Article 6 (1) (a) of the GDPR Regulation: to receive advertising material (direct marketing) from the Company as well as for electronic advertising (newsletter)
The personal data collected is:
Name, surname, email, phone, invoicing and delivery details (name, address, contact information), IP address, browser information, Order history
In order to be able to fulfill the requests you submit through the relevant contact form and / or to provide updates about the side effects, it is necessary to consent to the processing of your data. Without these mandatory data or your consent, we cannot go further. In any case, even without your prior consent, the Processing Manager may process your data in order to comply with legal obligations under EU laws, regulations and law, exercise rights in court proceedings, exercise its own legitimate interests and in all cases provided, where appropriate, in Articles 6 and 9 of the GDPR Regulation.
The processing is done both using computers and in printed form and always involves the implementation of the security measures provided by the current legislation.
4. Disclosure of privacy information
Our company takes very seriously the privacy of the users and undertakes to comply fully with the applicable law (Regulation (EU) 2016/679 – hereafter “GDPR”).
When you visit www.zetacurves.com, you may be asked to provide personal information (name, surname, e-mail address, product shipping address, etc.). and only by the Company, for the execution of your orders. Under no circumstances do they have access to these, persons who do not have a working relationship with our online store, nor are they processed by our company for any other purpose than the above. For any further processing of your personal data, your explicit consent will be sought with a relevant message informing you of the specific content of the processing.
5. Individual rights
You can contact our Company Manager at any time to exercise the rights under Articles 15-22 of the GDPR Regulation such as, for example, to obtain an up-to-date list of people who have access to your data, receive a confirmation of the existence or non-personal data relating to you, check their content, origin, correctness and location (also in relation to any third country), request a copy, request a correction, and, in the cases provided for in the GDPR Regulation, request that you limit their processing, delete them, oppose direct communication activities (including restrictions on certain means of communication), to receive advertising material (direct marketing) from the Company. If you do not agree with the terms of the GDPR Regulation, you may request that you limit their processing, delete them, oppose direct communication activities (including restrictions on certain media) You may withdraw your consent at any time, without however affecting the legitimacy of the processing that has taken place before the withdrawal of the consent.
Indicatively, your rights regarding the storage and processing of your personal data by the company are:
Right to update: We clearly inform our users about the use of their data.
Right of access: Users of zetacurves.com can access their data through their account page.
Right of Correction: By contacting us, we will promptly correct any of your information.
Right of Deletion: By contacting us, at your request, we will promptly delete any or all of your information.
Right to limit the processing: You are entitled to ensure from the controller that you limit the processing of your data.
Right to data portability: Our users can contact us at any time if they wish to export their data (but it may take time, as data is fragmented between multiple isolated datasets).
Right of objections: You are entitled to object to the maintenance and processing of your personal data. We handle all requests for this matter for our customers and users of our customers (contact us).
The right not to be subject to automated decision making, including profile analysis: We do not submit our clients to automated decision making, nor do we analyze profiles.
6. Issues of access requests
We will respond to every request for access within 2 weeks of the request being made.
7. Why and how we process your personal data
With your consent, the Company may process your normal personal data to ensure that you can take advantage of available services and features and optimize their performance, manage requests and reports received through the Site, and manage your registration in any restricted areas and initiatives (eg competitions) that may be on the Site in accordance with Article 6.1.a of the GDPR Regulation. The Company may also process your personal data for the fulfillment of obligations arising from laws, regulations and European Union law: the legal basis for processing for this purpose is Article 6 (1) (c) of the GDPR Regulation.
In addition, with your optional consent, your normal personal information may be used in advertising (marketing), that is, in the context of sending advertising material and / or commercial communications relating to the Company’s services to the contact details reported using traditional methods and / and communication methods (eg mail, telephone, etc.) or automatic means (eg Internet, fax, e-mail, text messaging, mobile applications, such as smartphones and tablets, accounts on social media, such as Facebook or Twitter, etc.). The legal basis for processing for this purpose is Article 6 (1) (a) of the GDPR Regulation.
The Company may process your normal personal data in order to protect its rights in court proceedings.
All your data is processed using automated and online tools that are appropriate to ensure full security and confidentiality.
Visitors ensure, on their own responsibility, that their data is correct. Our company does not bear any responsibility for the false entry of information by its visitors.
The Company undertakes to ensure the security of the user’s personal data and to comply with the statutory security provisions to prevent loss of data, illegal or unlawful use of data or unauthorized access to data, with particular but not exclusive reference to Articles 25-32 of the GDPR. The Company uses many types of advanced technologies and security procedures to protect the user’s personal data. For example, personal data is stored on secure servers located in protected and controlled access. The user can help the Company update and correct its personal data, announcing any change of address, qualifications, contact information, etc.
Consent is expressly provided by our customers at our request for any processing of our customer’s personal data for which it has not been previously granted. The company ensures that the consent given by its customers is easily and immediately revoked at any time.
9. People under the age of 18
zetacurves.com does not offer services to people under the age of 18. Any use of zetacurves.com by anyone under 18 years of age is forbidden.
10. Browsing data
11. Links to other websites
12. Violations of data
Our team closely monitors any unauthorized access to the system and has put in place multiple preventive measures to reduce ‘attacks’ on our systems and services. In 2 years, zetacurves.com did not have any security problem or any violation of personal data.
Researchers and security users can submit a report or security report to the email address firstname.lastname@example.org, for which we are processing reports on the same day (if it is a working day).
Below are a few steps we took to reduce any attack:
– Aggressive firewall and network isolation on our infrastructure.
– We do not allow access to our server systems from the public Internet. The trusted administrators of zetacurves.com must log in through a trusted VPN.
– We monitor any security flaws in any “library” we use and correct them as soon as an update is issued.
– Use 2-factor authentication on all our sensitive accounts (e.g., hosting provider, etc.).
– All backups are stored on a separate server, kept for a maximum of 1 week, and special logon certificates are required to recover them.
The points listed above help reduce the likelihood of a significant data breach.
zetacurves.com will notify the competent authority and its respective customer of any violation of his or her personal data within 72 hours after the breach comes to our knowledge.
zetacurves.com can store data from individuals residing in all EU member states and operates based in Bulgaria with the following legal data:
Name: MIG GROUP LTD
Address: No 17 Gotce Delchev Street
City / Postal: Blagoevgrad / 2850