Privacy Policy - End Users [2024 Updates]

Your rights

The GDPR provides you with certain rights in relation to the processing of your personal data, including to:

• Request access to personal data about you (a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are processing it lawfully.

• Request rectification, correction, or updating of any personal data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.

• Request personal data provided by you to be transferred in a structured, commonly used and machine-readable format.

• Request erasure of personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove personal data where you have exercised your right to object to processing (see below).

• Request the restriction of processing of your personal data. This enables you to ask us to suspend the processing of personal data about you (e.g., if you want us to establish its accuracy or the reason for processing it).

• Object to the processing of your personal data in certain circumstances. This right may apply where the processing of your personal data is based on the legitimate interests of ISLASH.

Some of these rights are not absolute and are subject to various conditions under applicable data protection and privacy legislation, laws, and regulations to which we are subject. If at any time you would like to exercise any of your rights as set out above, you can contact us at compliance@islash.io. You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

In terms of direct marketing communications, your personal data is stored for marketing purposes as long as you have not objected to such marketing communication and/or the subscription to the email newsletter is active, as the case may be. Similarly, You can opt-out of receiving our direct marketing communications at any time through our unsubscribe or opt-out mechanisms provided, or by contacting us at compliance@islash.io.

If an opt-out request is received, you may still receive communications from us for up to ten (10) business days as we process the opt-out request. We reserve the right to continue sending out communications regarding service announcements, administrative messages, and accounts administration relating to ISLASH that are necessary to our relationship with you. All data will be processed in accordance with this Privacy Policy.

In addition to the above, please note that you have the right to make a complaint at any time to the Information Commissioner’s Office if you are concerned about the way in which we are handling your personal data.

Data retention

We will retain your personal data for as long as is necessary to provide you with our products and ongoing services and for a reasonable period thereafter, to enable us to meet our contractual and legal obligations and to deal with complaints and claims.

At the end of the retention period, your personal data will be securely deleted in accordance with our Personal Data Retention Policy.

Your customers’ information

We collect and use personal information about your customers. In general, we only collect and use this personal information as directed by you. We will never use your customers’ information to independently market or advertise to your customers unless they are also using our applications or services directly.

You need to make sure your customers understand how you (and how we on your behalf) collect and process their personal information.

Also, if you are collecting any sensitive personal information from your customers (for example, information about health, race, ethnicity, genetics, biometrics, trade union membership, political opinions, philosophical or religious beliefs, criminal history, or sexual interests), you should get the affirmative, express consent from your customers to use and process this information.