Personal data is all kinds of information that can be directly or indirectly associated to a physical living person. For example, images and sound recordings that are processed in a computer can be personal data even if no names are mentioned. Encrypted data and different types of electronic identities (such as IP numbers) are personal data if they can be linked to physical people.
Processing of personal data is everything that occurs in terms of handling personal data. Any action performed with personal data counts as a form of processing, regardless of whether it is automated or not. Examples of common processing are collection, registration, organising, structuring, storing, revising, transfer and deletion.
Purpose: In order to process service issues, in order to implement and manage participation in competitions and/or events, in order to evaluate, develop and improve our services, products and systems for customers and users, in order to prevent abuse of a service or to prevent, avoid and investigate crimes against the company.
Processing performed by retailers using the data: Communication and answering any questions via phone or via digital channels, including social media. Identification. Investigating any complaints and support cases (including technical support). Communication before and after participation in a contest or event (e.g. confirmation of notifications, questions or evaluations). Identification and age check. The choice of winner and award of any prize(s) (e.g. payouts or travel vouchers).Adaptation of services to be more user-friendly (e.g. change the user interface to simplify the flow of information or to highlight features commonly used by customers in our digital channels). Analyses of data in order to improve features and tools. Analyses of data to develop, broaden and change product categories and product data to make the service more relevant to users and customers. Analyses of data in order to develop and improve our resource efficiency from an environmental and sustainability perspective (e.g. by informing about efficient resource utilisation per category, environmentally-friendly products and more efficient deliveries). Analyses of data in order to prioritise and plan the choice of retailers on the site. Analyses of data to enable our users and customers to influence the appearance and contents of our services. Analyses of data to improve IT systems in order to improve performance or enhance security for DigMedix, its users and customers. Based on the data we collect (e.g. clicks to retailers, age and gender) you can be sorted into a user group, upon which analyses are then performed on an aggregate level using non-identifiable or pseudonymised data without any link to you as an individual. The insights from the analyses form the basis for which products, product categories, and the design of tools for which users and customers have access to. Prevention and investigation of possible fraud or other crimes (e.g. clicks to retailer manipulation). Prevention of spam, phishing, unauthorised retrieval of price or product data from our services, harassment, unauthorised login to user accounts, or other actions prohibited by law or by our membership, service or customer agreement. Protecting and improving our IT environment against attacks and intrusions.
Categories of personal data: Name. Contact details (e.g. address, e-mail and phone number). Age. Gender. City. Correspondence and feedback regarding our services and products. Purchase and user-generated data (e.g. clicks and visit history). Technical data pertaining to devices used and their settings (e.g. language setting, IP address, browser settings, time zone, operating system, screen resolution and platform). Information about how you interacted with us, in other words how you used the service, login method, where and how long different pages were visited, response times, download errors, how you access and leave the service, etc.
Legal basis: Legitimate interest. The processing is necessary to meet our and your legitimate interest in processing your participation in competitions and/or events.
Storage period: From the time of collection and for a period of 36 months thereafter.
We always strive to ensure that your personal data is processed within the EU/EEA and that all of our own IT systems are located within the EU/EEA. However, upon systematic support and maintenance, we may have to transfer the data to a country outside the EU/EEA. If we share your personal data with a personal data counsel who - either on their own or through a subcontractor - is established or stores data in a country outside the EU/EEA, in these cases the counsel may only share the data relevant to the purpose (e.g. log files).
Regardless of the country in which your personal data is processed, we take all reasonable legal, technical and organisational measures to ensure that the level of protection is the same as within the EU/EEA. In cases where personal data is processed outside of the EU/EEA, the level of protection is guaranteed either by a decision by the EU Commission that the country concerned ensures an adequate level of protection or by the use of so-called appropriate safeguards. Examples of appropriate safeguards are approved codes of conduct in the recipient country, standard contract clauses, binding company internal rules or Privacy Shield.
If you want a copy of the safeguards that have been taken or information about where these have been made available, please contact us at firstname.lastname@example.org.
Keep in mind that we may have the right to deny your request if there are legal obligations that prevent us from immediately deleting certain personal data. These obligations derive from accounting and tax legislation, banking and money laundering legislation, yet also from consumer law.
It may also be possible that processing is necessary for us to determine, enforce or defend legal claims. Should we be prevented from granting a request for deletion, we will instead block personal data from being used for purposes other than the purpose that prevents the requested deletion.
Cookies are a small texts consisting of letters and numbers sent from our web server and stored on your browser or device.
On DigMedix.com, we use the following cookies: 1. Session cookies (a temporary cookie that terminates when you close your browser or device). 2. Sustained cookies (cookies that remain on your computer until you delete them or they expire). 3. First party cookies (cookies set by the website you visit). 4. Third party cookies (cookies set by a third party site). 5. Similar technologies (technologies that store information in your browser or device in a manner similar to cookies).
Yes. Your browser or device allows you to change the settings for the usage and scope of cookies. Go to the settings of your browser or device to learn more about managing the settings for cookies. Examples of things you can manage are blocking all cookies, only accepting first party cookies, or deleting cookies when you close your browser.
Keep in mind that some of our services might not work if you block or delete cookies. You can read more about cookies in general on youronlinechoices.eu.
We use IT systems to protect the privacy, integrity and access to personal data. We have adopted security measures to protect your personal data against unauthorised or illegal processing (such as unauthorised access, loss, destruction or damage). Only those persons who actually need to process your personal data to meet our stated purposes have access to them.
The Data Protection Authority is responsible for monitoring the application of the law, and a person who deems that a company processes personal data in an incorrect manner is able to file a complaint through the Data Protection Authority.
Since we take data protection very seriously, we have designated employees who handle these issues, and you can always reach them via email@example.com.
When we provide information about updates, we will also explain what the updates involve and how they affect you.