1.2 Our website may contain links to other third-party website. If you follow a link to any of those third-party website, please note that they have their own privacy policies and that we do not accept any responsibility or liability for their policies or processing of your personal data. Please check these policies before you submit any personal data to such third-party website.
2 Information we may collect about you
2.1 We will collect and process all or some of the following personal data about you:
(a) Information you provide to us
Personal data that you provide to us, such as when using the contact form on our website, including your name, email address, and other contact details;
(b) Our correspondence
If you contact us, we will typically keep a record of that correspondence;
(c) Survey information
We may also ask you to complete surveys that we use for research purposes. In such circumstances we shall collect the information provided in the completed survey;
(d) Website and communication usage
Details of your visits to the website and information collected through cookies and other tracking technologies including, but not limited to, your IP address and domain name, your browser version and operating system, traffic data, location data, web logs and other communication data, and the resources that you access.
3 Uses made of your personal data
3.1 In this section, we set out the purposes for which we use personal data that we collect via our website and, in compliance with our obligations under European law, identify the “legal grounds” on which we rely to process the information.
3.2 These “legal grounds” are set out in European Data Protection Law, which allows companies to process personal data only when the processing is permitted by the specific “legal grounds” set out in law (the full description of each of these grounds can be found here ).
3.3 Please note that in addition to the disclosures we have identified below, we may disclose personal data for the purposes we explain in this notice to service providers, contractors, agents, advisors (e.g. legal, financial, business or other advisors) that perform activities on our behalf, as well as other members of the Mitsubishi Electric group.
(a) To communicate effectively with you and conduct our business
To conduct our business, including to respond to your queries, to otherwise communicate with you, or to carry out our obligations arising from any agreements entered into between you and us;
Use justification :
contract performance, legitimate interests (to enable us to perform our obligations and provide our services to you)
(b) To monitor certain activities
To monitor queries and transactions to ensure service quality, compliance with procedures and to combat fraud;
Use justification :
legal obligations, legal claims, legitimate interests (to ensure that the quality and legality of our services)
(c) To inform you of changes
To notify you about changes to our services and products;
Use justification :
legitimate interests (to notify you about changes to our service)
(d) To ensure website content is relevant
To ensure that content from our website is presented in the most effective manner for you and for your device, which may include passing your data to business partners, suppliers and/or service providers;
Use justification :
legitimate interests (to allow us to provide you with the content and services on the website)
(e) To reorganise or make changes to our business
In the event that we: (i) are subject to negotiations for the sale of our business or part thereof to a third party; (ii) are sold to a third party; or (iii) undergo a re-organisation, we may need to transfer some or all of your personal data to the relevant third party (or its advisors) as part of any due diligence process for the purpose of analysing any proposed sale or re-organisation. We may also need to transfer your personal data to that re-organised entity or third party (or their advisors) after the sale or reorganisation for them to use for the same purposes as set out in this policy.
Use justification :
legitimate interests (in order to allow us to change and run our business)
(f) In connection with legal or regulatory obligations
We may process your personal data to comply with our regulatory requirements or dialogue with regulators as applicable which may include disclosing your personal data to third parties, the court service and/or regulators or law enforcement agencies in connection with enquiries, proceedings or investigations by such parties anywhere in the world or where compelled to do so. Where permitted, we will direct any such request to you or notify you before responding unless to do so would prejudice the prevention or detection of a crime.
Use justification :
legal obligations, legal claims, legitimate interests (to cooperate with law enforcement and regulatory authorities)
4 Transmission, storage and security of your personal data
Security over the internet
4.1 No data transmission over the Internet or website can be guaranteed to be secure from intrusion. However, we maintain commercially reasonable physical, electronic and procedural safeguards to protect your personal data in accordance with data protection legislative requirements.
4.2 All information you provide to us is stored on our or our subcontractors’ secure servers and accessed and used subject to our security policies and standards.
Export outside the EEA and UK
4.4 Where we transfer personal data from inside the European Economic Area (the EEA) and/ or the United Kingdom (UK) to outside the EEA or UK, we may be required to take specific additional measures to safeguard the relevant personal data. Certain countries (including, where applicable, certain organisations self-certified under the EU-US Data Privacy Framework (DPF) or the UK Extension to the EU-US DPF) outside:
(a) the EEA, have been approved by the European Commission as providing essentially equivalent protections to EEA data protection laws; and
(b) the UK, have an adequacy decision in force under United Kingdom adequacy regulations.
Therefore, no additional safeguards are required to export personal data to these jurisdictions. In countries which have not had these approvals, we will establish legal grounds justifying such transfer, such as EU Commission-approved model contractual clauses, the UK Information Commissioner approved standard contractual clauses or a vendor’s Processor Binding Corporate Rules or other legal grounds permitted by applicable legal requirements.
4.5 Please contact usat at email@example.com if you would like to see a copy of the specific safeguards applied to the export of your personal data.
4.6 Our retention periods for personal data are based on business needs and legal requirements. We retain personal data for as long as is necessary for the processing purpose(s) for which the information was collected, and any other permissible, related purpose. For example, we may retain certain transaction details and correspondence until the time limit for claims arising from the transaction has expired, or to comply with regulatory requirements regarding the retention of such data. When personal data is no longer needed, we either irreversibly anonymise the data (and we may further retain and use the anonymised information) or securely destroy the data.
5 Your rights & contacting us
5.1 We will use reasonable endeavours to ensure that your personal data is accurate. In order to assist us with this, you should notify us of any changes to the personal data that you have provided to us by contacting us at firstname.lastname@example.org.
5.2 If you have any questions in relation to our use of your personal data, you should first contact us at email@example.com. Under certain conditions, you may have the right to require us to:
(a) provide you with further details on the use we make of your information;
(b) provide you with a copy of information that you have provided to us;
(c) update any inaccuracies in the personal data we hold (please see paragraph 5.1);
(d) delete any personal data that we no longer have a lawful ground to use;
(e) where processing is based on consent, to withdraw your consent so that we stop that particular processing;
(f) object to any processing based on the legitimate interests ground unless our reasons for undertaking that processing outweigh any prejudice to your data protection rights; and
(g) restrict how we use your information whilst a complaint is being investigated.
5.3 Your exercise of these rights is subject to certain exemptions to safeguard the public interest (e.g. the prevention or detection of crime) and our interests (e.g. the maintenance of legal privilege). If you exercise any of these rights we will check your entitlement and respond in most cases within a month.
5.4 If you are not satisfied with our use of your personal data or our response to any exercise of these rights you have the right to complain to data protection authority in the country that you reside in or, the country of your place of work or the country where the alleged infringement took place. For data subjects in the UK, this is the Information Commissioner. For data subjects in the Netherlands, this is the Dutch Personal Data Authority, the Autoriteit Persoonsgegevens.
5.5 If you have any questions in relation to this policy, please contact us at firstname.lastname@example.org.
6 Cookies policy
Use of personal data under EU data protection laws must be justified under one of a number of legal “grounds” and we are required to set out the grounds in respect of each use in this policy. We note the grounds we use to justify each use of your information next to the use in the “Uses of your personal data” section of this policy.
These are the principal legal grounds that justify our use of your information:
where you have consented to our use of your information (you will have been presented with a consent form in relation to any such use and may withdraw your consent by contacting us at email@example.com.
Contract performance :
where your information is necessary to enter into or perform our contract with you.
Legal obligation :
where we need to use your information to comply with our legal obligations.
Legitimate interests :
where we use your information to achieve a legitimate interest and our reasons for using it outweigh any prejudice to your data protection rights.
Legal claims :
where your information is necessary for us to defend, prosecute or make a claim against you, us or a third party.