Data Protection Policy
Last Revised July 4th, 2020
1. Data protection principles
PerkZilla is committed to processing data in accordance with its responsibilities under the General Data Protection Regulation (GDPR) and other data protection and privacy laws. These data protection and privacy laws describe how organizations including PerkZilla must collect, process, and store personal information. These rules apply regardless of whether data are stored electronically, on paper, or in other formats. To comply with the law personal information must be collected and used fairly, stored safely, and not disclosed unlawfully.
Article 5 of the GDPR requires that personal data shall be:
Data protection risks
This policy helps to protect PerkZilla from data security risks, including:
Responsibilities
Everyone who works for or with PerkZilla has some responsibility for making sure that data are collected, stored, and processed appropriately. Each individual who handles personal data must make sure that the data are handled and processed in line with this policy and the principles of data protection.
General employee guidelines
Data storage
PerkZilla will make sure that personal information are sufficient, pertinent and minimal to what is necessary in relation to the purposes for which they are processed.
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data, PerkZilla shall promptly assess the risk to people’s rights and freedoms and if appropriate report this breach to the ICO (more information on the ICO website)
PerkZilla does its best to make sure that individuals are aware that their data are being processed, and that they understand:
Subject access requests
All individuals who are the subjects of personal data held by PerkZilla are entitled to:
If an individual contacts the company requesting this information, this is called a subject access request (SAR).
SARs from individuals should be made by email addressed to the data controller by using the contact information at the bottom of this policy or via live chat support. The data controller can supply a standard request form, although individuals do not have to use it.
The data controller will provide the relevant data within 30 days from receiving the request. The data controller will always verify the identity of anyone making a subject access request before providing them with any information.
The company has a comprehensive privacy notice explaining how data relating to individuals are collected, processed, stored, shared, and protected by the company.
This data protection policy notice is available on request. A current version of this notice is also available on the company’s website.
If you have any questions about data protection policy, please contact us at Privacy@PerkZilla.com or via chat support.
We do our best to protect your data and information, by using the software, forms, widgets and additional tools we require that you do the same to protect your participants.
We have built the application with GDPR compliance in mind (enabling acceptance checkboxes, one-click unsubscribe among other features) but it’s your (the user’s) responsibility to use these features, research the regulations and jurisdictions of your campaign and participants privacy and act in accordance to the GDPR and removal requests for your own participants.
We are in no way responsible for your actions, and reserve the right to revoke access without notice if we find misuse, abuse or actions deemed non-compliant, unethical or blatantly against participant’s best interests.
If at anytime you have questions, feel free to contact us via email or live chat support and we’ll do our best to assist you.