1. Data Controller
KCmobiles is the data controller for the processing of Personal Data about you as a User of the Service.
This means that we are responsible for deciding how we hold and use personal information about you as a patient. We are required under data protection legislation to notify you of the information contained in this privacy notice.
“Data controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
“GDPR” means the General Data Protection Regulation (EU) 2016/679;
“Personal data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
“Personal data breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;
“Special categories of personal data” means personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.
3. Access to Personal Data
Only those employees at KCmobiles who need access to the Personal Data to perform their work tasks are processing the Personal Data. All those employees have entered into confidentiality agreements.
4. Right to Access Personal Data
You have the right to obtain from KCmobiles confirmation as to whether or not Personal Data concerning you are being processed, and, where that is the case, access to the Personal Data and the following information:
5. Right to Rectification etc.
KCmobiles is aiming at processing only Personal Data which is correct and that it is updated.
You have the right to obtain from KCmobiles without undue delay the rectification of inaccurate Personal Data concerning you.
The right to be forgotten
You have the right to obtain from KCmobiles the erasure of Personal Data concerning you without undue delay and KCmobiles has the obligation to erase Personal Data without undue delay inter alia when the Personal Data is no longer necessary in relation to the purposes for which they were collected or otherwise processed or you have withdrawn consent on which the processing is based.
Restriction of processing
You have the right to obtain from KCmobiles restriction of processing if you have a particular reason for wanting the restriction. This may be if you have issues with the content of the information we hold or how we have processed your personal data. It can also be the case when KCmobiles no longer needs the Personal Data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims.
You have the right to receive the Personal Data concerning you, which you have provided to KCmobiles, in a structured, commonly used and machine-readable format and have the right to transmit those data to another data controller without hindrance from KCmobiles where the processing is based on consent or on a contract or the processing is carried out by automated means.
You have the right to object to processing of Personal Data concerning you based on automated decisions and/or profiling. This shall not apply if the decision is necessary for entering into, or performance of, a contract between you and KCmobiles or follows from a legal obligation.
6. Data Processing Agreements
KCmobiles cooperates with other companies which process Personal Data on behalf of KCmobiles. KCmobiles uses only data processors that provide sufficient guarantees that they implement appropriate technical and organisational measures in such a manner that processing will meet the requirements of the GDPR and ensure the protection of the rights of all data subjects concerned.
Processing by a data processor is governed by a contract that is binding on the data processor with regard to KCmobiles and that sets out the subject-matter and duration of the processing, the nature and purpose of the processing, the type of Personal Data and categories of data subjects and the obligations and rights of KCmobiles and the data processor.
7. The Personal Data We Collect and/or Receive
When you sign up to become a User or when you purchase a Product, you may be required to provide us with Personal Data about yourself, including, without limitation, your name, phone number, e-mail address, and profile picture. The legal basis for such processing is the performance of the contract with you. And, if you contact us via the Contact Us page, you’ll need to provide your name and other contact information. We don’t collect any Personal Data from Visitors or Users when they use the Service, unless they provide such information voluntarily. Some of this Personal Data (User name/name, products and/or shops which you have chosen to save to your profile, the Users that you follow and the Users that follow you), will be publically accessible through the Service, and we may display this publically accessible Personal Data to other Users or elsewhere on the Service, by itself or in connection with other Information relating to your activities on the Service or with any User Content you provide.
In addition we may collect or receive additional information. Such other information may be collected:
8. The Personal Data Collected by or Through Third-Party Advertising Companies
9. How We Use and Share the Personal Data
We may use the Personal Data to provide and improve our Website, Service, and other products and services; to process transactions you request; to inform you about our products and services and those of our promotional partners; and to bring you customized content (such as newsletters) based on your activity in connection with the Service.
We may use and/or share Personal Data as described below.
10. Accessing and Modifying Personal Data and Communication Preferences
Users may access, remove, review, and/or make changes to their Personal Data by following the instructions found on the Website. In addition, you may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of any KCmobiles marketing e-mail. We will use commercially reasonable efforts to process such requests in a timely manner. You should be aware, however, that it is not always possible to completely remove or modify information in our subscription databases. Users and job applicants cannot opt out of receiving transactional e-mails related to their account with KCmobiles.
11. How We Protect the Personal Data
We take reasonable steps to protect the Personal Data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. Please understand, however, that no security system is impenetrable. We cannot guarantee the security of our databases, nor can we guarantee that the Personal Data that you supply will not be intercepted while being transmitted to and from us over the Internet. In particular, e-mail sent to or from the Website may not be secure, and you should therefore take special care in deciding what information you send to us via e-mail.
11. Transfer of Personal Data to other countries
The Service, the Website and its servers may be operated in the European Union (EU), the United States, and elsewhere. Please be aware that your Personal Data, may be transferred to, processed, maintained, and used on computers, servers, and systems located outside of your state, province, country, or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction.. When Information is transferred from the EU/EEA to a third country, i.e. a country outside of the EU/EEA, we take all appropriate legal, technical and organisational measures to secure that the level of protection is the same as within the EU/EEA. In case Personal Data is processed outside of the EU/EEA the level of protection is guaranteed either via a decision of the European Commission that the country in question has an adequate level of protection for Personal Data or by using appropriate safety measures such as binding corporate rules or Privacy Shield.
12. External Websites
14. Storage of Personal Data
We only store your Personal Data as long as it is necessary for the purposes for which the Personal Data are processed.
DATE: Version in effect from 2019.01.20