JustinSpencer.com – GDPR Compliance
JustinSpencer.com needs to gather and use certain information about individuals, to improve experience & understand some qualitative & quantitative aspects regarding the individuals, thus improving the whole company as an active action/improvement feedback loop.
These individuals may include clients, affiliates, business associates, employees and/or other people the organization has a relationship with or may need to stay in contact with.
GDPR mandates strict specific protocols and habits regarding the way individuals data collection and consent is peformed. By closely following these regulations, JustinSpencer.com further demonstrates our commitment to protecting our clients data security and privacy, empowering our clients with the control of how their consent is collected, recorded and used.
Addressing EU General Data Protection Regulation (GDPR) Principles.
The GDPR protection law describes how organizations, including JustinSpencer.com, must collect, manage, store and protect personal information.
These rules apply regardless of whether data is stored electronically, on paper or on other materials. To comply with the law, personal information must be collected and used fairly, stored safely and not disclosed unlawfully.
The EU General Data Protection Regulation (GDPR) is underpinned by eight important principles. These say that personal data must:
1. Be processed fairly and within the parameters of the law
2. Be acquired only for specific, legally-abiding purposes
3. Be adequate, relevant and not overbearing
4. Be accurate and kept as current as possible
5. Not be held for longer than required or needed
6. Processed in alignment with the rights of data subjects
7. Be protected in effective and secure ways
8. Not be moved outside the European Economic Area (EEA), unless that country or territory also provides a sufficient level of protection
Why this policy must exist
This data protection policy ensures JustinSpencer.com:
Abides by the data protection law and follow good practice
Protects the data rights of clients, staff, affiliates & associates
Is transparent about how it stores and processes any one individual’s data
Provides protection from the risks of a data potential breach
Focus on Privacy & Security as a Whole
Our perspective at JustinSpencer.com is that, the client data is one of the most key assets a company has, and when this data is submitted to us, our aim is to secure it and use it only for the relevant purpose it was provided to us for.
Having been through detailed security and privacy reviews, JustinSpencer.com will fully be compliant with the General Data Protection Regulation (GDPR) protocols.
This is available on upon request. <a target=”_blank” href=”https://JustinSpencer.com/data-protection” rel=”noopener noreferrer”> An extended veresion of this statement is also accessible on the company website.</a>
Lawful foundation for processing
Data subject rights
JustinSpencer.com has created policies to protect users rights. We allow JustinSpencer.com users to opt-out of any/all of our notifications we provide, and will always respond to any data access requests.
Request for Deletion of Data
At the end of your relationship with JustinSpencer.com, you can request the deletion of any data sent to us for verification. We will always comply with these requests.
Data Compliance officers
JustinSpencer.com has designated an internal Data Protection Officer (DPO) to monitor compliance.
Data Processing Activities
In compliance with GDPR, we keep a record of our processing activities. We provide this information to our clients once a formal written request is placed with us.
Data breach Alerts
We do our very best to keep your data safe, though the unanticipated may happen. We are focused and committed to always being fully honest and notifying the relevant authority and all affected parties in accordance with the GDPR mandates.