1.0 Our Core Beliefs regarding User Privacy and Data Protection
· User-privacy and personal data protection are human rights
· We have a duty of care to the people covered by our data
· Data is a liability, so should only be collected and processed when completely necessary
· We will never sell or otherwise distribute or make public your personal information
2.0 Relevant legislation
Along with our business and internal computer systems, this website is designed to comply with the following EU legislation with regards to data protection and user-privacy:
· EU Data Protection Directive 1995
· EU General Data Protection Regulation 2018
Our compliance with the above legislation, all of which are stringent in nature, means that we are probably compliant with the data protection and personal privacy legislation of many other countries as well. But if you are unsure about whether this site is compliant with your own country's specific data protection and user-privacy legislation, you must not use it and should log-out now. You must also not use this site if you are under 18 years of age, as it is not intended for children and we have not attempted to ensure its suitability for people under 18.
3.0 Personal information that we may collect and why:
We may collect data concerning individuals such as (but not limited to) their name, employing company's name and website URL, postal address, country, email address, telephone number and job title and/or role within our corporate customers, as well as those individuals' (and their employing corporations') interests regarding our products and services.
This information is usually collected in person, through the completion of a form (at an event or online), or when you contact us by any means, through interactions on a social media page or on a website, or when you make a purchase or enquiry. We will use the data to send marketing communications to you relating to our business, to process orders and send related administrative information to you, and when we have a legal right or duty to use or disclose information about you.
3.1 Site visitation tracking
This site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device used, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer's IP address which could be used to personally identify you, but Google do not allow us access to this. We consider Google to be a third-party data processor (see section 4.0 below).
3.2 Contact forms and email links
Should you choose to contact us using the contact form on our website (http://www.notuscomposites.com/contact-us) or an email link (like this one firstname.lastname@example.org) or using our Subscription form (a button on our website http://www.notuscomposites.com), the data that you supply will be stored by this website and then processed by us to respond to your request for information about our organisation and products. If you wish to modify or remove the information stored and used by us, please send an email to: email@example.com.
3.3 Email newsletter
If you choose to subscribe to our newsletter, the email address that you submit to us will be forwarded to MailChimp who provide us with email marketing services. We consider MailChimp to be a third-party data processor (see section 4.0).
Your email address will remain within MailChimp's database for as long as we continue to use their services for email marketing or until you specifically request removal from the list. You can do this by unsubscribing using the unsubscribe links contained in any email newsletters that we send you. While your email address remains within the MailChimp database, you will receive periodic newsletter-style emails from us.
4.0 Our third-party data processors
We use a number of third parties, who have been carefully chosen, to process personal data on our behalf.
We are careful to give out the minimum data required for the actions to be carried out by our partners and providers and to respect the confidentiality of your data. However, COBRA cannot be held responsible for any data leaks or theft from the third-party computer systems listed above.
5.0 Data Breaches
We will report any unlawful data breach of this our database or the database/s of any of our third-party data processors to all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.
We endeavour to take every precaution to maintain adequate security with respect to the data you provide to us, to prevent any loss, misuse, unauthorized access, disclosure or modification of the data under our control. However, we cannot fully eliminate security risks associated with storage and the transmission of personal data.
6.0 Data Controller
The data controller of this website is:
Notus Composites FZC
Shed 26, Warehouse 8, 9 & 10 RAK FTZ Technology Park P.O. Box 38124 Ras Al Khaimah UAE
Phone: +971 (0)50 531 2552
7.0 Data Protection Officer
At Notus Composites, the person responsible for data protection is Mr Mihir Shah, who can be contacted at: firstname.lastname@example.org.