Last update: 10.09.24
This document provides an overview of the privacy measures in place at the aitransformme.com website ("Website"), detailing our approach to collecting and utilizing the personal information you supply while interacting with the CADEN LIMITED Website and using the CADEN LIMITED Service. It further details your rights in relation to our handling of your personal data and how you can oversee this information.
Visiting the Website does not inherently require you to submit personal information. Nonetheless, the use of CADEN LIMITED Service via our Website may necessitate the gathering and processing of personal data.
In such instances, we generally seek the consent of the individual (the data subject). According to Article 37/1 of the GDPR regulations, CADEN LIMITED is not required to designate a Data Protection Officer (DPO). Still, CADEN LIMITED has appointed a dedicated individual to oversee GDPR compliance and address any data protection queries, requests, or concerns. This individual can be contacted at [email protected] email.
CADEN LIMITED commits to adhering to the General Data Protection Regulation (GDPR) and other applicable data protection legislation in various jurisdictions, especially when handling personal data like names, addresses, email addresses, telephone numbers, or payment details of any individual ("data subject"). Our Privacy Policy is designed to transparently communicate how we collect, use, and process such personal data, its purpose, and scope. It also informs data subjects (users) of their rights regarding their personal data.
As the data controller, CADEN LIMITED has taken significant technical and organizational steps to ensure the highest level of security for the personal data we manage on this Website.
In this Privacy Policy, "We", "Us", "Our", and "CADEN LIMITED" all represent CADEN LIMITED.
Please note that our services are not directed at minors, and our Website is not intended for use by anyone under the age of 18.
DATA MANAGEMENT
Retention and Disposal of Data
The period we retain personal data is strictly governed by applicable legal retention obligations. Once this period concludes and the data is no longer required for its initial intent, we proceed to systematically and securely dispose of or delete the data, provided it is not needed for the original collection purpose.
We are dedicated to upholding the principles of data storage and the secure elimination of personal information to safeguard privacy. Our approach includes taking proactive measures to ensure that data is not retained beyond its useful life or the legally permitted duration. We strictly comply with data privacy regulations, such as the GDPR for organizations within the European Union, highlighting the importance of minimizing data and restricting storage to the essentials required for processing tasks.
Upon the expiry of the legally permitted period or when the data no longer serves its original purpose, we initiate a careful data elimination or de-identification process. This process is carried out with the utmost attention to security and confidentiality, ensuring the permanent removal of personal information from our systems. However, if immediate complete elimination is impractical, or if retaining the data for archival reasons is justified within legal limits, we may de-identify the data. This removes personal identifiers, thereby mitigating the risks of data breaches or unauthorized access.
Email Subscription Cancellation
If you wish to no longer receive emails from us, you have the option to unsubscribe by visiting the "Unsubscribe Page" or by using the contact details provided at the end of this Privacy Policy.
Be aware that fully processing your opt-out request may take up to 10 (ten) business days. For modifications or updates to your personal information in our possession, please reach out to us using the contact information at the end of this Privacy Policy.
RIGHTS OF DATA SUBJECTS
Amendment Right
Under the privileges established by European legislation, any individual whose data is collected holds the privilege to demand the entity collecting the data to rectify any incorrect details about them promptly. In addition, such individuals are entitled to supplement any partial personal data in relation to the purposes of the processing with a supplementary statement.
Elimination Right
In accordance with the privileges sanctioned by the law of the European Union, any person subject to data collection is entitled to request the immediate deletion of their personal data by the entity collecting it, except when retaining the data is justified. The obligation falls on the entity to delete the personal data without undue delay under the following conditions, unless the processing of the data remains imperative:
· the personal data is no longer necessary for the goals for which it was initially gathered or processed;
· the individual revokes their consent, which was initially the basis for the data processing as per the provisions of Article 6(1)(a) or Article 9(2)(a) of the GDPR, and there is no other legal ground for the processing;
· the individual opposes the processing pursuant to Article 21(1) of the GDPR and there are no superior legitimate reasons for the processing, or the individual contests the processing as per Article 21(2) of the GDPR.
Restriction of Processing Rights
Every individual, under European legislation, whose data undergoes processing, holds the right to request that the data controller restrict processing in certain scenarios. These scenarios encompass conditions such as:
· when an individual contests the accuracy of their personal data, giving the controller time to verify the data's accuracy;
· if data processing breaches legal standards, but the individual prefers limiting data usage over its deletion;
· when the controller no longer requires the data for its initial collection purposes, yet the individual retains it for the purpose of legal claims.
Should an individual challenge the processing of their data as per GDPR Article 21(1), the restriction applies until it is determined whether the controller’s legitimate reasons override the individual's objections.
Right to Data Portability
Under European law, individuals whose data are processed by a data controller have certain rights. One of these is the right to data portability. This enables individuals to retrieve their personal data and use it across different services. It guarantees that people can get their data from a controller in a structured, widely used, and machine-readable format, making it easier to move the data to another controller without hindrance.
The controller that initially collected the data must facilitate this transfer, provided the processing is based on consent (as outlined in GDPR Article 6(1)(a) or Article 9(2)(a)) or is necessary for the fulfillment of a contract (as per GDPR Article 6(1)(b)). This right applies solely to automated data processing and does not cover processing that is necessary for carrying out a task in the public interest or in the exercise of official authority.
Rights Regarding Data Protection
European laws enable people to request access to their personal data from data controllers at any time. This right extends beyond merely obtaining a copy of their data; it also includes receiving detailed information about how their data is processed. Specifically, individuals have the right to be informed about:
· The objectives behind data processing;
· The types of personal data processed;
· Any parties, including those abroad or international entities, to whom the personal data has been disclosed;
· The expected duration of data storage, or if that's not determinable, the criteria for deciding this duration;
· Their rights to amend or erase their personal data in the controller's possession, to limit the processing of their data, or to oppose the processing;
· Their right to file a complaint with a regulatory authority;
· Information on the data's origin if it wasn't directly collected from the individual.
This comprehensive access ensures that individuals have greater control and oversight over their personal data, bolstering their rights in the digital age.
Automated Decision-Making & International Data Movement
Under the GDPR, particularly Articles 22.1 and 22.4, the law acknowledges the significance of automated decision-making, including profiling activities. It mandates that individuals be clearly informed about the logic utilized in these automated decisions, their significance, and the potential impact on them. Additionally, if an individual's personal data is transferred abroad or to international organizations, they must be notified about the protections in place for their information during such transfers. For further details on these processes, individuals are encouraged to reach out as directed in our Privacy Policy's final section. We commit to addressing and resolving any queries promptly.
Objection Rights
As per the rights granted by the European legislator, every individual has the right to object to the processing of their data, mainly when such processing is justified under Article 6(1), points (e) or (f) of the GDPR, including any related profiling. Individuals who believe their specific circumstances justify an objection are urged to contact us as outlined in our Privacy Policy's conclusion. We ensure to quickly acknowledge and respond to such requests without undue delay.
Confirmation Right
The European legal framework ensures every individual has the right to verify if their personal data is being processed by a data controller. When such verification is requested, our policy is to offer comprehensive and clear insights into the nature of the data processing, including the purpose and any other pertinent information that the individual might find useful. Our commitment to transparency and the protection of individual rights aligns with the principles of the GDPR.
USER RIGHTS UNDER GDPR
Under the General Data Protection Regulation (GDPR), individuals within the European Union possess considerable rights concerning their personal data. These rights ensure individuals have greater control and transparency over their information. Firstly, the Right to Access allows individuals to obtain confirmation from the data controller on whether or not personal data concerning them is being processed, and, if so, access to such data. This enables individuals to understand the scope and purpose of data processing.
The Right to Rectification affords individuals the opportunity to correct inaccurate personal data and complete incomplete data, ensuring their information remains up-to-date and correct. Equally important, the Right to Erasure, commonly referred to as the 'Right to be Forgotten,' enables individuals to request the deletion or removal of personal data when there is no compelling reason for its continued processing.
Individuals also have the Right to Restrict Processing, allowing them to 'pause' the processing of their personal data under certain conditions, and the Right to Data Portability, which lets individuals receive their data in a structured, commonly used, and machine-readable format. This right also includes the ability to transmit that data to another controller seamlessly.
The Right to Object is significant, providing individuals the ability to protest the processing of their personal data for direct marketing purposes, including profiling to the extent that it is related to such direct marketing. Lastly, GDPR introduces restrictions on automated individual decision-making, including profiling. This means individuals have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them.
These rights collectively form a critical component of GDPR, emphasizing the importance of privacy and personal data protection in the digital age. Individuals can exercise these rights by contacting the data controller, with the process and feasibility of exercising these rights subject to certain conditions and limitations as outlined in the GDPR.
TYPES OF PERSONAL DATA WE COLLECT
In line with our commitment to adhering to GDPR guidelines, CADEN LIMITED is dedicated to the principle of minimizing data collection to protect individual privacy. We gather certain types of personal data essential for the effective delivery of our services, detailed as follows:
· Full name of the user, including first and last names, necessary for identification.
· An email address, which is crucial for creating an account and enabling access to the CADEN LIMITED Service.
· Transaction-related billing details, such as full address, zip code, city, country, and phone number, for payment processing.
· Chosen method of payment, while ensuring that full credit card details or expiration dates are not retained.
· The user's IP address, provided by their Internet Service Provider (ISP), important for user identification.
· Location information, gathered to understand user interactions from different areas.
When you register for the CADEN LIMITED Service, we collect essential personal information, defined as User's Information. This encompasses identifiable information such as your complete name (first and last name) and email address. CADEN LIMITED gathers, processes, and stores these data for account setup and management purposes. Additionally, you're required to provide Billing Information, which includes personal details partly retained by CADEN LIMITED and partly managed by external payment processors. Your Personal Data is used for several objectives, including:
· Enhancing your user experience by customizing the website and improving the CADEN LIMITED Service;
· Sending you important emails regarding your account status, password reset procedures, and payment confirmations;
· Facilitating communication regarding your interactions with the Service and any associated content/materials;
· Sharing collective statistical data with our partners concerning our user base to ensure secure data transmission and compliance with data processing agreements (DPA).
PRIVACY AND DATA HANDLING
At CADEN LIMITED, user privacy and the secure management of personal information are our top priorities. We are committed to respecting our users' privacy by securing their consent before processing their data. This means we only proceed when we have explicit, informed, and unequivocal permission from our users - referred to as data subjects - indicated by a clear affirmative action for the use of their personal information.
A "data subject" or "user" is any identifiable individual whose personal data is processed by CADEN LIMITED. Our processing activities are extensive, covering the collection, storage, organization, modification, access, examination, use, disclosure, merging, and deletion of personal information, which can be conducted manually or via automated systems.
The term "personal data" encompasses any piece of information that can be used to identify a data subject or user, whether directly or indirectly. This can include their name, identification numbers, location data, online identifiers, or features specific to their physical, mental, genetic, psychological, economic, cultural, or social identity.
Our focus on meticulous data management is a testament to our commitment to safeguarding our users' privacy and rights. We ensure all data subjects are fully aware of and freely consent to our data processing practices. In doing so, CADEN LIMITED complies with the GDPR and other relevant privacy laws, maintaining the highest levels of data privacy and security.
COOKIE POLICY
Cookie Management
Our main focus is collecting marketing data crucial for distributing updates or promotional materials, including elementary personal details like your name, address, telephone number, and email. This information is used in a way that maintains your anonymity, considered purely statistical. We commit to not disclosing this data to external parties.
Web browsers offer features to control cookies based on your privacy concerns. You can configure your browser to refuse new cookies, alert you about incoming cookies, or deactivate existing ones. It's important to note that completely turning off cookies might detract from your online experience, as it restricts access to our website's complete functionality.
Certain features on our website necessitate the use of cookies. You can opt to eliminate or block cookies through your browser settings at your discretion. For further details, consider visiting www.allaboutcookies.org and/or www.youronlinechoices.com.
Policy on Cookies and Pixel Tags
If you prefer not to use Cookies, you can adjust your browser settings to disable them.
CADEN LIMITED uses Pixel tags, also known as web beacons or transparent/clear GIFs. These are used alongside Cookies to identify users who visit our Website or interact with our HTML-formatted emails. Users have the option to turn off Cookies on our Website by changing their browser settings to block Cookies completely.
Moreover, users can delete Cookies that have already been saved at any time through their web browser or specific software tools. Our website employs Cookies to collect statistical data essential for customizing user experiences and enhancing online behavioral advertising.
We meticulously collect data on the most frequented pages, types of files downloaded, domains and countries of internet service providers, and URLs visited before and after navigating to CADEN LIMITED. Using Google Analytics, we evaluate the success of our marketing strategies and the functionality and performance of our website.
Cookies Tracking Policy
Our Tracking Policy elaborates on how CADEN LIMITED utilizes cookies, pixel tags, and other related technologies to monitor and analyze the behavior of visitors on our website. This policy is designed to ensure transparency and offer users control over their personal data. By tracking usage patterns, including which pages are most often visited, how much time users spend on our pages, and the paths taken by users as they navigate through our site, we aim to enhance our website's usability and the effectiveness of our communications.
The data gathered through these tracking technologies assist us in understanding user preferences and improving the overall user experience. It's important for users to understand that while this data can lead to a more personalized web experience, CADEN LIMITED commits to respecting user privacy and choices regarding cookie usage.
Users who choose to disable cookies should be aware that certain functionalities of the website might be affected. However, our policy ensures that users have the necessary information and tools at their disposal to make informed decisions regarding their privacy and data usage on our platform.
PRIVACY STATEMENT
At CADEN LIMITED, your privacy and the protection of your service usage data is our primary focus. Nonetheless, under certain circumstances, it might become necessary to release personal details stored in your account or on the servers and databases of CADEN LIMITED. These circumstances may include, but are not limited to:
· complying with legal obligations or responding to lawful requests and legal processes involving us;
· investigating and addressing potential violations of this privacy policy or instances where the service might be used for unlawful purposes;
· looking into suspected fraudulent activities;
· safeguarding the rights, property, or safety of {companyname}, our employees, our users, or the public.
While CADEN LIMITED is committed to protecting your privacy, these actions are vital for maintaining legal compliance and ensuring the security and integrity of our services and all parties involved.
Should CADEN LIMITED undergo a change in ownership due to mergers, acquisitions, restructurings, the winding down of the business, or if our publishing assets or Website(s) are directly or indirectly sold, user personal information associated with the affected Website(s) will be passed on to the new owners.
You will receive notifications regarding any changes, allowing you to exercise your rights under GDPR. This includes modifying or deleting your personal information, or withdrawing consent at any point by contacting us via the provided channels. Alternatively, you may comply with any updates to the Privacy Policy by the new owners.
To comply with GDPR and ensure the secure and lawful handling of personal data, we may share information with third-party partners, such as marketing allies, assuming there are formal agreements in place for data processing.
For payment processing, personal data may be shared with processors, including payment gateways adhering to the Data Protection Agreement (DPA), a necessary step for facilitating transactions and providing users with access to CADEN LIMITED Service. Our reliance on external tech providers for service delivery might lead to international data transfers.
These tech providers can process personal data as sub-processors, abiding by the DPA under GDPR rules. Nonetheless, it's crucial to understand that encryption can be rendered useless if a user fails to safely manage their login details, like passwords. Should any breach occur due to such negligence, the responsibility does not fall on the controller.
PRIVACY POLICY UPDATES
We reserve the right to modify this privacy policy at any moment and for any reason. Such changes are effective immediately upon posting the revised policy on our website. We encourage our users to regularly review our privacy policy to remain informed about how their personal information is protected. The date of the most recent update will be prominently displayed at the beginning of the policy, allowing users to easily see when it was last updated.
Significant changes to our privacy practices will be announced on our website or, when appropriate, through direct communication with users. However, it is recommended that users periodically check this policy to be aware of any modifications and their implications for their personal data.
By continuing to use our services following the publication of changes to this privacy policy, you are agreeing to those changes. We are committed to prioritizing privacy and aim to maintain transparency in how we manage your personal data. If you have any questions about our privacy practices or the measures we take to protect your data, please reach out to us via our support channel.
In the case of a personal data breach, the data controller is obligated to promptly notify the appropriate supervisory authority, ideally within 72 hours of detecting the breach, unless doing so is not feasible. If the breach potentially allows unauthorized access to personal data, the controller must also quickly inform the affected individuals. However, the requirement to notify individuals may not apply if effective security measures, such as encryption, were implemented on the breached data.
Policy Updates Notification
Our commitment to maintaining the security and privacy of your personal information necessitates periodic updates to our privacy policy. We understand the importance of keeping our users informed about changes that might affect their personal data. Therefore, we have established several channels to ensure effective communication regarding policy updates.
When our privacy policy is updated, notifications are promptly posted on our website to ensure visibility. Additionally, we may send direct communications to our users, especially when significant changes occur, to provide a detailed explanation of the amendments and how they may influence the users' interaction with our services. Our aim is to foster an environment of transparency and trust, ensuring that all users are well-informed and comfortable with how their personal data is handled.
To stay updated on any changes, we encourage users to frequently visit our policy update page on our website. For those who wish for direct notifications, opting into our email update service is recommended. This proactive approach in monitoring policy updates ensures that you, as a user, remain fully informed and in control of your personal information at all times.
LEGAL COMPLIANCE
Our Privacy Policy is aligned with the highest legal standards for data protection, including the Data Protection Directive (95/46/EC) and the General Data Protection Regulation (Regulation 2016/679 or "GDPR"), which came into effect on May 25, 2018. This regulation focuses on safeguarding the rights of individuals regarding their Personal Data and promoting the free flow of such data, subsequently revoking Directive 95/46/EC. Visitors from beyond the European Union must ensure they adhere to any relevant local laws as applicable.
Under the GDPR, the roles of 'data controllers' and 'data processors' are clearly defined concerning personal data handling. Data controllers are those who determine the purposes and means of processing personal data. In this scenario, all CADEN LIMITED's clients, encompassing both organizations and individuals, are considered data controllers. Consequently, CADEN LIMITED serves as a data processor, tasked with managing your personal data in compliance with GDPR mandates, and ensuring that any partners involved in data processing meet these obligations as well.
CONTACTS
If you have inquiries regarding our Privacy Policy, need to update your personal information, or wish to be removed from our records, kindly reach out to us at [email protected]. Use the subject "Re: Privacy Policy" to ensure clarity.
Pursuant to Articles 6-III and 19 of the Digital Economy Trust Act (Law No. 2004-575, June 21, 2004), known as LCEN, we provide the following details to the users and visitors of the aitransformme.com site:
OWNER STATUS: Company
PREFIX: LTD
COMPANY NAME: CADEN LIMITED
ADDRESS: Eleftherias 13, 2564, Nicosia Cyprus
COMPANY NUMBER: HE 464958
COMPANY DIRECTOR: MILTIADIS NTANATSEV
VAT: CY60100200T
EMAIL ADDRESS: [email protected]
SITE BUILDER: CADEN LIMITED
PUBLISHING MANAGER: CADEN LIMITED
RESPONSIBLE PERSON FOR THE PUBLICATION: [email protected]
RESPONSIBLE PERSON FOR THE PUBLICATION AS A LEGAL PERSON:
WEBMASTER: CADEN LIMITED
CONTACT THE WEBMASTER: [email protected]