Privacy Notice
Effective Date: Feb 22nd 2021
Notice Version: 1.0
Data Controller Contact Information:
Simona Ksoll Coaching & Consulting
support@simonaksoll.com
This document governs the privacy notice of our website www.simonaksoll.com. Our privacy notice tells you what personal data and nonpersonal data we may collect from you, how we collect them, how we protect them, how we share them, how you can access and change them, and how you can limit our sharing of them. Our privacy notice also explains certain legal rights that you have with respect to your personal data. Any capitalized terms not defined herein will have the same meaning as where they are defined elsewhere on our website.
Definitions
‘NONPERSONAL DATA’ (NPD) is information that is in no way personally identifiable.
‘PERSONAL DATA’ (PD) means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified directly or indirectly by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. PD is in many ways the same as Personally Identifiable Information (PII). However, PD is broader in scope and covers more data. (GDPR) means General Data Protection Regulation.
Topics Covered in Our Privacy Notice
YOUR RIGHTS
INFORMATION WE COLLECT AND HOW WE COLLECT IT
HOW YOUR INFORMATION IS USED AND SHARED
RETAINING AND DESTROYING YOUR PD
UPDATING YOUR PD
REVOKING YOUR CONSENT FOR USING YOUR PD
PROTECTING THE PRIVACY RIGHTS OF THIRD PARTIES
DO NOT TRACK SETTINGS
LINKS TO OTHER WEBSITES
PROTECTING CHILDREN’S PRIVACY
OUR EMAIL POLICY
OUR SECURITY POLICY
USE OF YOUR CREDIT CARD
TRANSFERRING PD FROM THE EUROPEAN UNION
CHANGES TO OUR PRIVACY NOTICE
YOUR RIGHTS
Contact us using the information at the top of this privacy notice to exercise any of your legal rights contained within this privacy notice.
You Have the Right Not to Have Y
You have the right to request that we do not sell any of your personal information.
Personal information for this section means a natural person’s first name or first initial and last name in combination with any one or more of the following data elements when the name and data elements are not encrypted: social security number, driver’s license number, driver authorization card number, or identification card number. Account number, credit card number, or debit card number, in combination with any required security code, access code, or password that would permit access to the person’s financial account. A medical identification number or a health insurance identification number. A username, unique identifier, or electronic mail address in combination with a password, access code, or security question and answer that would permit access to an online account.
If you wish to make this request, please email us at: support@simonaksoll.com telling us that you do not want to have any of your personal information sold. Please include enough personal information so that we can reasonably verify your identification. We will respond to your request within 60 days after receiving it.
Your Rights Under the GDPR
When using our services and submitting PD to us, you may have certain rights under the GDPR if you reside or are in any of the countries of the European Union. Depending on the legal basis for processing your PD you may have some or all of the following rights:
- The Right to Be Informed - You have the right to be informed about the PD that we collect from you and how we process them.
- The Right of Access - You have the right to get confirmation that your PD are being processed and you have the ability to access your PD.
- The Right to Rectification - You have the right to have your PD corrected if they are inaccurate or incomplete.
- The Right to Erasure (Right to Be Forgotten)- You have the right to request the removal or deletion of your PD if there is no compelling reason for us to continue processing them.
- The Right to Restrict Processing - You have the right to ‘block’ or restrict the processing of your PD. When your PD are restricted, we are permitted to store your data, but not to process them further.
- The Right to Data Portability - You have the right to request your PD that you provided to us and use them for your own purposes. We will provide your data to you within 30 days of your request.
- The Right to Object - You have the right to object to us processing your PD for the following reasons:
- Processing was based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling)
- Direct marketing (including profiling)
- Processing for purposes of scientific/historical research and statistics
- Rights in relation to automated decision-making and profiling.
- Automated Individual Decision-Making and Profiling - You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects regarding you or similarly significantly affects you.
- Filing a Complaint with Authorities - You have the right to file a complaint with supervisory authorities if your information has not been processed in compliance with the General Data Protection Regulation. If the supervisory authorities fail to address your complaint properly, you may have the right to a judicial remedy.
Your Privacy Rights Under the Brazilian General Data Protection Law
Under the LGPD, any natural person (data subject) in Brazil has certain rights. The data subject has the right to obtain from the controller, in relation to his data processed by the controller, at any time and upon request, the following rights:
- confirmation of the existence of processing;
- access to the data;
- correction of incomplete, inaccurate, or outdated data;
- anonymization, blocking or deletion of unnecessary, excessive or processed data in violation of the provisions of this Law;
- portability of data to another service or product provider, upon express request, in accordance with the regulations of the national authority, subject to commercial and industrial secrets;
- deletion of personal data processed with the consent of the data subject, except in the cases provided for in art. 16 of this Law;
- information on public and private entities with which the controller made shared use of data;
- information about the possibility of not giving consent and about the consequences of the refusal;
- revocation of consent, according to § 5 of art. 8 of this Law.
Your California Privacy Rights
Californian consumers have certain rights under the California Consumer Privacy Act (CaCPA) AB 375. For us to comply with some of these rights, we must be able to reasonably verify a consumer’s identity. These rights include:
- the right of Californians to know what personal information is being collected about them
- the right of Californians to know whether their personal information is sold or disclosed and to whom
- the right of Californians to say no to the sale of their personal information
- the right of Californians to access their personal information
- The right to data portability. Californians have the right to request their personal information that they provided to us and use them for their own purposes. We will provide Californians their personal information within 30 days of their request.
- the right of Californians of the deletion of their personal information
- the right of Californians of equal service, price, and not being discriminated against even if they exercise their privacy rights
- one or more designated means for Californian consumers to submit requests under the CACPA including (at minimum) a toll-free telephone number, and if the business maintains an Internet website, a website address
- the right of Californians to designate an authorized agent to make a request on their behalf. When designating an authorized agent, you must provide a valid power of attorney, the requester’s valid government issued identification, and the authorized agent’s valid government issued identification.
These rights include the right to request what personal information we collect and disclose about consumers.
Personal information includes:
- categories of personal information that a business collected about the consumer
- categories of sources from which the personal information was collected
- specific pieces of personal information that the business has collected about consumers
- categories of third parties with whom the business shares personal information
- the business or commercial purpose of collecting or selling personal information
- *categories of personal information sold
- *categories of third parties to whom personal information was sold, by category or categories of personal information sold for each third party to whom personal information was sold
- *categories of personal information disclosed for a business purpose
- *categories of personal information that the business sold about the consumer in the preceding 12 months, or a statement that it has not sold any personal information
- *categories of personal information about the consumer that the business disclosed for a business purpose in the preceding 12 months, or a statement that it has not disclosed any personal information for business purposes.
Provisions with an asterisk (*) only apply to consumers if your business sells personal data about Californian consumers or discloses their personal information for business purposes. If you do not fall under the definition of the selling under the new law, then you can delete the provisions with an asterisk (*).
The definition of “Sell” includes the following:
Your business derives 50 or more percent of its annual revenue from selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means Californian consumers’ personal information by the business to another business or a third party for monetary or other valuable consideration.
Additional Requirements for Companies Who Sell Personal Information:
A business that sells personal information about a California consumer and that is required to comply with Section 1798.120 of AB No. 375 shall, in a form that is reasonably accessible to consumers:
(1) Provide a clear and conspicuous link on the business’ Internet homepage, titled “Do Not Sell My Personal Information,” to an Internet webpage that enables a consumer, or a person authorized by the consumer, to opt out of the sale of the consumer’s personal information. A business shall not require a consumer to create an account in order to direct the business not to sell the consumer’s personal information.
(2) Include a description of a consumer’s rights pursuant to Section 1798.120, along with a separate link to the “Do Not Sell My Personal Information” Internet webpage in:
(A) Its online privacy policy or policies if the business has an online privacy policy or policies.
(B) Any California-specific description of consumers’ privacy rights.
(3) Ensure that all individuals responsible for handling consumer inquiries about the business’s privacy practices or the business’s compliance with this title are informed of all requirements in Section 1798.120 and this section and how to direct consumers to exercise their rights under those sections. To learn more about this California privacy law visit
https://leginfo.legislature.ca.gov/faces/billTextClient.xhtml?bill_id=201720180AB375
Copyright © Orion Systems. This document or any portion of it may not be copied or duplicated without a license from http://www.DisclaimerTemplate.com