dig8ital is strongly committed to protecting users’ privacy. We want you to feel secure that when you deal with dig8ital, your personal data is in good hands. dig8ital complies with the General Data Protection Regulation (GDPR) and all other applicable privacy and data protection laws when dealing with personal data about an identified or identifiable individual (a natural person).
This policy sets out what personal data we will collect, and how we will collect, use, disclose and protect your personal data, in relation to your access and use of our website and our services.
Changes to this policy
We may change this policy by uploading a revised policy onto the website. The change will apply from the date that we upload the revised policy.
This policy was last updated on 29 September 2021.
2. For which purposes and on which legal basis do we use your personal data?
dig8ital uses your personal data only where required for specific purposes. Please see below for a list of the purposes for which dig8ital uses your personal data and the legal basis for each such purpose.
We will process your personal data for the purposes mentioned above based on your prior consent, to the extent such consent is mandatory under applicable laws.
We will not use your personal data for purposes that are incompatible with the purposes of which you have been informed, unless it is required or authorised by law, or it is in your own vital interest (e.g. in case of a medical emergency) to do so.
3. What personal data do we collect
dig8ital collects personal data in two ways: (1) directly (for example, when you provide personal data to request information about dig8ital or our services, or sign up for a newsletter); and (2) indirectly (for example, through our website's technology).
We may collect and process the following personal data:
4. Who do we collect your personal data from
We collect personal data about you from:
The provision of some personal data is optional. However, if you do not provide us with certain types of personal information, you may be unable to enjoy the full functionality of our website or services.
5. How do we use your personal data
In general, we will only use personal data you provide to us for the purpose for which such information was provided.
We may use your personal data to:
You may opt-out of receiving communications from us by sending an email to: firstname.lastname@example.org. You may also opt out of promotional emails we send by clicking the unsubscribe link included at the bottom of the email.
We may also use your personal data:
We use personal data for the purposes described in Section 2, “For which purposes and on which legal basis do we use your personal data” above, as well as to provide you with information you request, and for other purposes which we would describe to you at the point where it is collected.
We analyze your IP and browser information to determine what is most effective about our website, to help us identify ways to improve it and make it more effective.
6. Will we share your personal data with third parties
We may disclose your personal data to:
Such third parties may be located in other countries. Before we do so, we shall take the necessary steps to ensure that your personal data will be given adequate protection as required by relevant data privacy laws and dig8ital’s internal policies.
7. Processing your personal data
For the purposes of the GDPR:
The personal data we may process is described in Section 2 of this policy. The legal basis for our processing of your personal data is your consent and, for certain types of personal data, processing is necessary for the performance of a contract to which you are a party.
Despite the above, we may process any of your personal data where such processing is necessary for compliance with applicable laws. You do not have to provide us with your name or contact information to access and use certain parts of the website. However, you must provide us with your name and contact information to access some of our other services such as downloading resources. The consequence of not providing your name and contact information is that we will not be able to provide all of our services to you.
8. How do we protect your personal data
We will take reasonable steps to keep your personal data safe from loss, unauthorised activity, or other misuse. We implement appropriate technical and organisational measures to ensure a level of security appropriate to risks inherent in processing personal data.
While we take reasonable steps to maintain secure internet connections, if you provide us with personal data over the internet, the provision of that information is at your own risk.
9. Accessing, correcting and removing your personal data
You are entitled (in the circumstances and under the conditions, and subject to the exceptions, set out in applicable law) to:
If you would like to exercise any of your above rights, please contact us by email. Your email should provide evidence to confirm that you are the individual to whom the personal data relates and set out the details of your request (e.g. the personal data, or the correction, that you are requesting).
If, despite our commitment and efforts to protect your personal data, you believe that your data privacy rights have been violated, we encourage and welcome individuals to come to dig8ital first to seek resolution of any complaint. You have the right at all times to register a complaint directly with the relevant local data protection supervisory authority. You can contact the European Data Protection Supervisor here.
10. How long will your personal data be retained by us
We will retain your personal data only for as long as is necessary. Personal data is deleted after a reasonable time according to the following retention criteria:
We will delete your personal data from the servers at an earlier date if you so request, as described in Section 10 “Accessing, correcting and removing your personal data”.
11. International transfer of your personal data
Your personal data may be transferred to, and stored in, a country operating outside the European Economic Area (EEA). Under the GDPR, the transfer of personal data to a country outside the EEA may take place where the European Commission has decided that the country ensures an adequate level of protection. In the absence of an adequacy decision, we may transfer personal information provided appropriate safeguards are in place.
The personal data we collect is processed by the third-party processors set out the table below. Some of the customer account and marketing information we collect is processed by us and/or third party data processors in other countries, including the United States. These countries are not subject to an adequacy decision by the European Commission and instead, in transferring your personal data to these countries, we take other appropriate safeguards as prescribed by the GDPR. We have verified that our data processors in the United States have self-certified under the EU-US Privacy Shield framework.
List of third party processors as at 22 June 2018:
Third party processor: Google, LLC
Purpose: Analytics, Advertising
Location of processor: USA
Policy pages: view here
12. Contact us