Optimise Outsourcing Limited Commitment to GDPR
The European Union General Data Protection Regulation (“GDPR”) enforces cross-border data protection mechanisms for businesses with operations in multiple EU member states. Acting as a central supervisory authority, the GDPR governs data protection issues for all global businesses processing personal data.
This GDPR and Company Privacy Policy (“Policy”) applies to individuals that visit www.optimiseoutsourcing.co.uk (“Site”) from the European Economic Area (“EEA”) and United Kingdom (“UK”). It describes how Optimise Outsourcing Limited (“We” or “Us”) collects, uses, and discloses information that relates to an identified or identifiable individual located in the European Economic Area (EEA) or United Kingdom (the “Personal Data”) through our website at www.optimiseoutsourcing.co.uk (“Site”).
Please note that this Policy complements the Company Privacy Policy found at www.optimiseoutsourcing.co.uk/privacy-policy/, and unless explicitly defined in this Policy, the terms herein hold the same meaning as those in the Company Privacy Policy.
Optimise Outsourcing Limited is committed to providing secure services by implementing and adhering to prescribed compliance policies, both as a data controller and processor. GDPR enforcement is critical to our mission of providing our customers in the European Union with safe and dependable services.
For European Citizens and Residents Only
If you are a European citizen or resident in the European Economic Area (“EEA”) or other regions governed by GDPR, please be aware that we may transfer your information to a country or jurisdiction lacking the same data protection laws as your region. Your information may also be processed by staff working for us or for our service providers outside the EEA. If required by applicable law, we will seek your explicit consent to process your Personal Information collected on our website or provided by you.
The following provisions specifically apply to European citizens and residents. All processing of your Personal Information adheres to privacy rights and regulations according to the EU Directive 95/46/EC and the GDPR as of May 25, 2018. Under the GDPR, we will be the “data controller” of Personal Information collected through the Website, unless we collect such information on behalf of a “data controller,” in which case we will be a “data processor.” This Privacy Policy is not applicable to websites, applications, or services that do not display or link to this Privacy Policy or that display or link to a different privacy policy. For EU residents, if any definition in this Privacy Policy contradicts a definition under the GDPR, the GDPR definition shall prevail.
Your data rights under the GDPR include:
- The right to access: You can request confirmation of the processing of your Personal Information and receive a copy in a machine-readable format.
- The right to rectification: You have the right to have us correct inaccurate or incomplete Personal Information.
- The right to erasure: You may request the deletion or removal of your Personal Information in certain circumstances.
- The right to restrict processing: You can ask us to suppress the processing of your Personal Information, although we may still store it.
- The right to object to processing: You can object to your Personal Information being used for specific purposes.
- The right to data portability: You have the right to obtain your Personal Information in a machine-readable format.
- The right to complain to a supervisory authority: You can file a complaint with a supervisory authority if you believe your data rights have been infringed.
- The right to withdraw consent: If we rely on your consent to process your Personal Information, you can withdraw your consent at any time.
Data Transfers
We are based in Nairobi, Kenya and as such, we and our service providers may transfer your Personal Information to jurisdictions that may not offer the same data protection standards as your home jurisdiction. We will take reasonable steps to ensure that your Personal Information receives adequate protection in these jurisdictions.
If you are located in the EEA, we provide adequate protection for the transfer of Personal Information to countries outside these regions through intercompany agreements based on the Standard Contractual Clauses. Your information may also be transferred to other group companies or service providers in countries outside the EEA. This may occur if our servers, suppliers, and service providers are located outside the EEA or if you use our services while in countries outside this area.
Got questions regarding General Data Protection Regulation compliance? Contact our European representative: tech@optimiseoutsourcing.co.uk
