WHAT QUALITY ASSURANCES DO WE COMPLY WITH?
WHO ARE WE?
- Your personal data is processed on the basis of applicable data protection legislation by Bridge Publications Incorporated, 5600 East Olympic Boulevard, Commerce, CA 90022, United States of America (hereinafter: “BPI”, “we”, “us”, “our”). You can contact us via e-mail at email@example.com.
WHAT ARE COOKIES AND SOCIAL MEDIA PLUGINS?
- Cookies are small text files which are stored on your device’s hard drive which contain certain information or personal data.
- Social media plugins are small pieces of software developed and provided by social media service providers (such as Facebook), which allow us to integrate social media on our Website.
- Similar technologies are small pieces of software or invisible images (such as the Facebook Pixel) developed an provided by several service providers, which allows us, for example, to track conversions or to better target our promotional campaigns.
WHICH COOKIES, SOCIAL MEDIA PLUGINS AND SIMILAR TECHNOLOGIES DO WE USE?
- We may use the following type of cookies:
- Strictly necessary cookies which are required for the operation of our Website;
- Functional cookies which are used to recognize you when you return to our Website;
- Performance-enhancing cookies which are used to recognize and count the number of visitors to our Website and analyse how visitors move around our Website;
- Promotion cookies which are used to record your visit to our Website, the pages you have visited and the links you have followed.
- Our Website uses Google Analytics. This web analytics service, provided by Google Inc., uses analytical cookies. This service helps us to collect and analyse visitor information (such as browser usage, new visitor numbers, response to marketing activity and browsing times) to improve our Website and your experience, and to make our marketing campaigns relevant.
The information collected through Google Analytics cookies about your use of our Website is sent to and stored by Google, together with your IP address. Google may, for example, use this information for the following purposes:
- Provide advertising activity reports to advertisers and websites that host the promotional information and ensure that those website publishers are paid for;
- Detect and combat fraud and other security risks to protect users and partners;
- Fulfil its legal obligations;
- Improve its materials;
- Help Website and app owners using Google Analytics to understand how visitors interact with their sites or apps.
For all these activities with the exception of the last bullet point, Google acts as the data controller and the processing of the data it collects about your use of the Website takes place under its responsibility. Learn more about Google Analytics Cookie Usage on Websites.
However, you can control what information is sent to Google in the following ways:
- If you do not want Google Analytics to be used in your browser, you can install the Google Analytics Opt-out Browser Add-on. Learn more about Google Analytics and Privacy.
- If you are logged in to your Google Account, you can – depending on your account settings – view and edit certain data that Google collects from sites and apps you visit.
- The incognito mode in Chrome allows you to browse the Internet without having web pages and files recorded in your browser history. Cookies are deleted after you close all incognito windows and tabs. Your bookmarks and settings are saved until you delete them.
- Advertising settings allow you to manage which Google ads you see on the Internet. You can find out how ads are selected for you, unsubscribe from ads personalization, and block specific advertisers. Learn more about ads.
- Our Website may use the Facebook Pixel. This is an invisible image that is included on the pages of our Website and that is stored on Facebook's servers. Each time you open a page of our Website where this pixel has been recorded, this pixel is downloaded to your device from that Facebook server. The following data is provided to Facebook: your IP address and the specific characteristics of your device (e.g. type, operating system, specific software and hardware).
We only receive statistical information from Facebook itself and not your personal data.
If you do not wish to receive certain promotional information, you can adjust your advertising preferences in your personalised Facebook page. Finally, via the settings of your mobile device, you can also indicate that the machine data cannot be communicated to third parties. Learn more about the Facebook Pixel.
TO WHOM DO WE SEND YOUR PERSONAL DATA?
- We rely on third parties, for example:
- To provide you our Website (such as a hosting provider); or
- To target our promotional information (such as a marketing company); or
- To process your order (such as a transport company to deliver you the materials); or
- To process your payment (such as a payment service provider or a credit checking agency).
These third parties are only allowed to process your personal data on our behalf and upon our explicit written instruction. We also warrant that all those third parties are selected with due care and are committed to observing the safety and integrity of your personal data.
- We may be legally obliged to share your personal data with competent law enforcement agents or representatives, judicial authorities, governmental agencies or bodies, including competent data protection authorities, to comply with a legal obligation as set out in Article 3
- We do not send your personal data in an identifiable manner to any other third party than the ones mentioned in Articles 1, 4.2, 4.3 and 4.4 without your explicit consent to do so. However, we may send anonymized data to other organizations that may use those data for improving materials and services as well as to tailor the marketing, displaying and selling of those materials and services.
WHERE DO WE PROCESS YOUR PERSONAL DATA?
- We process your personal data within the USA. In order to process your personal data for the purposes outlined in Article 3 above, we may also transfer your personal data to third parties who process on our behalf outside the EEA. Each entity outside the EEA that processes your personal data will be bound to observe adequate safeguards with regard to the processing of your personal data. For BPI, such safeguards result from the fact that we are directly bound by compliance with EU legislation in the context of personal data protection. For third parties, such safeguards may be the consequence of:
- The recipient country having legislation in place which may be considered equivalent to the protection offered within the EEA; or
- A contractual arrangement between us and that entity; or
- An approved certification mechanism, such as the EU-US Privacy Shield decision adopted by the European Commission on 12 July 2016.
- We may transfer anonymized and/or aggregated data to organizations outside the EEA. Should such transfer take place, we will ensure that there are safeguards in place to ensure the safety and integrity of your data and all rights with respect to your personal data you might enjoy under applicable mandatory law.
- We do our utmost best to process only those personal data which are necessary to achieve the purposes listed under Article 3
- Your personal data are only processed for as long as needed to achieve the purposes listed under Article 3 above or up until such time where you withdraw your consent for processing them. Your withdrawal of consent may imply that you can no longer use the whole or part of our Website. We will de-identify your personal data when they are no longer necessary for the purposes outlined in Article 3 above, unless there is:
You understand that an essential aspect of our marketing efforts pertains to making our marketing materials more relevant to you. We do this by customizing your unique profile based on relevant characteristics and then use this profile to provide you with communications, promotions, offerings, newsletters and other promotional information about materials and services that may interest you.
We will take appropriate technical and organizational measures to keep your personal data safe from unauthorized access or theft as well as accidental loss tampering or destruction. Access by our staff members or third parties’ personnel will only be on a need-to-know basis and be subject to strict confidentiality obligations. You understand, however, that safety and security are best efforts obligations which can never be guaranteed.
If you are registered to receive promotional information, such as communications, promotions, offerings and newsletters, via e-mail or other person-to-person electronic communication channels, you can change your preferences for receiving such promotional information by clicking the opt-out link provided in such promotional information.
WHAT IF YOU DON’T LIKE COOKIES?
- An overriding interest of BPI, or any other third party, in keeping our personal data identifiable; or
- A legal or regulatory obligation or a judicial or administrative order that prevents us from de-identifying them.
WHAT ARE YOUR RIGHTS?
- You have the right to request access to all personal data processed by us pertaining to you. We reserve the right to charge a reasonable administrative fee for multiple subsequent requests for access that are clearly submitted for causing nuisance or harm to us. Each request must specify for which processing activity you wish to exercise your right to access and must specify to which data categories you wish to gain access to.
- You have the right to rectification, e. to ask that any personal data pertaining to you that are inaccurate, are corrected free of charge. If you submit a request for correction, your request needs to be accompanied of proof of the flawed nature of the data for which correction is asked.
- You have the right to withdraw your earlier given consent for processing of your personal data.
- You have the right to erasure, e. to request that personal data pertaining to you be deleted if these data are no longer required in the light of the purposes or if you withdraw your consent for processing them. However, you need to keep in mind that a request for deletion will be evaluated by us against:
You have the right to restriction instead of deletion, e. to request that we limit the processing of your personal data if:
- Our and a third parties’ interests which may override your interests; or
- Legal or regulatory obligations or administrative or judicial orders which may contradict such deletion.
You have the right to object to the processing of personal data if:
- We are verifying the accuracy of your personal data; or
- The processing is unlawful and you oppose the deletion of your personal data; or
- You require your personal data to establish, exercise or defend a legal claim, while we do no longer need your personal data for the purposes listed under Article 3 above; or
- We are verifying whether our legitimate interests override your interests if you exercise your right to object in accordance with Article 6.
- The processing is based on our legitimate interest; and
- You are able to prove that there are serious and justified reasons connected with your particular situation that warrant such objection; and
- Our legitimate interests do not override your interests.
However, if the intended processing qualifies as direct marketing, you have the right to object to such processing free of charge and without justification.
You have the right to data portability, e. to receive from us in a structured, commonly-used and machine-readable format all personal data you have provided to us if the processing is based on your consent or a contract with you.
If you wish to submit a request to exercise one or more of the rights listed above, you can contact our Data Protection Officer by sending an e-mail to firstname.lastname@example.org. An e-mail requesting to exercise a right will not be construed as consent with the processing of your personal data beyond what is required for handling your request. Such request should meet the following conditions:
- State clearly which right you wish to exercise; and
- State clearly the reasons for exercising your right if such is required; and
- Your request should be dated and signed; and
- Your request should be accompanied by a digitally scanned copy of your valid identity card proving your identity. If you use the contact form, we may ask you for your signed confirmation and proof of identity.
We will promptly inform you of having received your request. If the request meets the conditions above and proves valid, we will honor it as soon as reasonably possible and at the latest thirty (30) days after having received your request.
If you have any complaints regarding the processing of your personal data by us, you may always contact our Data Protection Officer by sending an e-mail to email@example.com. If you remain unsatisfied with our response, you are free to file a complaint with the competent data protection authority.