(D) Our values and what this policy is for: We value your privacy and want to be accountable and fair to you as well as transparent with you in the way that we collect and use your personal information. We also want you to know your rights in relation to your information which you can find here.
(E) Who this policy applies to: This policy applies to:
Depending on our relationship, we will collect and use your information in different ways. Please click on the links above to find out the information that we collect about you and how we use this information.
- (a) How we obtain your personal information
- (b) Collection of your personal information and how we use it;
- (c) How and why we share your personal information;
- (d) How long we store your personal information;
- (e) Your rights;
- (f) Direct Marketing;
- (g) Risks and how we keep your personal information secure;
- (h) Links to other websites;
- (j) Further questions and how to make a complaint.
(G) Your rights to object: You have various rights in respect of our use of your personal information as set out in section 4. Two of the fundamental rights to be aware of are that you may:
- (a) ask us to stop using your personal information for direct-marketing purposes. If you exercise this right, we will stop using your personal information for this purpose.
- (b) ask us to consider any valid objections which you have to our use of your personal information where we process your personal information on the basis of our, or another person’s, legitimate interest.
You can find out more information in section 4.
You may provide us with your personal information as a result of joining one of our clubs. We may also receive information about you from third parties such as agencies who we work with to pursue business opportunities which we refer to as “third party sources” throughout this policy.
2. Collection of your personal information and how we use it
Please go to the section or sections below that best describes our relationship with you to find out the information that we collect about you and how we use this information. We refer to this as “personal information” throughout this policy.
2.1 Members of our clubs
(a) What personal information we collect about you.
We collect and use the following information about you:
- (i) your name;
- (ii) your postal address;
- (iii) your email address;
- (iv) your telephone number;
- (v) membership number;
- (vi) credit card details; and
- (vii) information provided when you correspond with us.
(b) How we use your personal information.
We will collect, use and store the personal information listed to carry out our obligations arising from the contract that exists between us for example to provide you access to your member benefits and take payment from you.
(c) Please see section 2.3 for more details about how we use your personal information.
(d) How long we store your personal information
We will retain information (including personal information) about you for as long as you subscribe to one of our clubs and for up to two years after that time. We will delete it after that time except where we need to keep any personal information to comply with our legal obligations, establishing or defending legal claims, or enforce our agreements.
2.2 Business Contacts
(a) We, or third parties on our behalf, may collect and use any of the following information about you:
- (i) your name;
- (ii) your business postal address;
- (iii) your business email address;
- (iv) your telephone number; and
- (v) any information provided by you when you correspond with us.
- (b) How we use your personal information.
We will collect, use and store the personal information listed to contact you about business opportunities for example the possibility of collaborating in relation to a discount club. Your personal information is processed in accordance with our legitimate interest to run, grow and develop our business. We have undertaken a balancing test to ensure that our legitimate interests are not outweighed by your interests or fundamental rights and freedoms which require protection of the personal information. You can ask us for information on this balancing test by using the contact details at Section 9.1.
Please see section 2.3 for more details about how we use your personal information.
(c) How long we store your personal information
We will retain information (including personal information) about you for as long as we have a business relationship with you and for up to three years after that time. We will delete it after that time except where we need to keep any personal information to comply with our legal obligations, resolve disputes, or enforce our agreements.
2.3 Whatever our relationship with you is, we may also collect, use and store your personal information for the following additional reasons:
(a) to deal with any enquiries or issues you have about how we collect, store and use your personal information, or any requests made by you for a copy of the information we hold about you. If we do not have a contract with you, we may process your personal information for these purposes where it is in our legitimate interests for customer services purposes;
(b) for internal corporate reporting, business administration, ensuring adequate insurance coverage for our business, ensuring the security of company facilities, research and development, and to identify and implement business efficiencies. We may process your personal information for these purposes where it is in our legitimate interests to do so;
(c) to comply with any procedures, laws and regulations which apply to us – this may include where we reasonably consider it is in our legitimate interests or the legitimate interests of others to comply, as well as where we are legally required to do so; and
(d) to establish, exercise or defend our legal rights – this may include where we reasonably consider it is in our legitimate interests or the legitimate interests of others, as well as where we are legally required to do so.
2.4 Further processing
We will not use your personal information in any way that is incompatible with the purposes set out in this section 2. Please contact us using the details in section 9 if you want further information on the analysis we will undertake to establish if a new use of your personal information is compatible with these purposes.
3.1 We will share your personal information with the following third parties or categories of third parties;
(a) marketing agencies for the purposes of billing and customer services; and
(b) where we have partnered with another organisation to make one of our discount clubs available to you we may share your personal data for the purposes of cancellations, refunds and complaints.
3.3 We will also disclose your personal information to third parties:
(a) where it is in our legitimate interests to do so to run, grow and develop our business:
(i) if we sell or buy any business or assets, we may disclose your personal information to the prospective seller or buyer of such business or assets and/or to their professional advisers;
(ii) if all or a substantial part of AMD’s or any of its affiliates’ assets are acquired by a third party, in which case personal information held by AMD will be one of the transferred assets;
(b) if we are under a duty to disclose or share your personal information in order to comply with any legal obligation, any lawful request from government or law enforcement officials and as may be required to meet national security or law enforcement requirements or prevent illegal activity;
(c) in order to enforce or apply our terms and conditions or any other agreement or to respond to any claims, to protect our rights or the rights of a third party or to prevent any illegal activity; or
(d) to protect the rights, property, or safety of AMD, our staff, our customers (including residents) or other persons. This may include exchanging personal information with other organisations for the purposes of fraud protection and credit risk reduction.
3.4 Save as expressly detailed above, we will never share, sell or rent any of your personal information to any third party without notifying you and, where necessary, obtaining your consent. If you have given your consent for us to use your personal information in a particular way, but later change your mind, you should contact us and we will stop doing so.
4. Your rights
4.1 You have certain rights in relation to your personal information. If you would like further information in relation to these or would like to exercise any of them, please contact us via email at firstname.lastname@example.org at any time. You have the following rights:
(a) Right of access. You have a right of access to any personal information we hold about you. You can ask us for a copy of your personal information; confirmation whether your personal information is being used by us; details about how and why it is being used; and details of what safeguards are in place if we transfer your information outside of the European Economic Area (“EEA”).
(b) Right to update your information. You have a right to request an update to any of your personal information which is out of date or incorrect.
(c) Right delete your information. You have a right to ask us to delete any personal information which we are holding about you in certain specific circumstances. You can ask us for further information on these specific circumstances by contacting us using the details in Section 9.1.
We will pass your request onto other recipients of your personal information unless that is impossible or involves disproportionate effort. You can ask us who the recipients are using the contact details in Section 9.1.
(d) Right to restrict use of your information: You have a right to ask us to restrict the way that we process your personal information in certain specific circumstances. You can ask us for further information on these specific circumstances by contacting us using the details in section 9 [LINK to 9.1].
We will pass your request onto other recipients of your personal information unless that is impossible or involves disproportionate effort. You can ask us who the recipients are using the contract details in Section 9.1.
(e) Right to stop marketing: You have a right to ask us to stop using your personal information for direct-marketing purposes. If you exercise this right, we will stop using your personal information for this purpose.
(f) Right to data portability: You have a right to ask us to provide your personal information to a third party provider of services.
This right only applies where we use your personal information on the basis of your consent or performance of a contract; and where our use of your information is carried out by automated means.
(g) Right to object. You have a right to ask us to consider any valid objections which you have to our use of your personal information where we process your personal information on the basis of our or another person’s legitimate interest.
4.2 We will consider all such requests and provide our response within a reasonable period (and in any event within one month of your request unless we tell you we are entitled to a longer period allowed by applicable law). Please note, however, that certain personal information may be exempt from such requests in certain circumstances, for example if we need to keep using the information to comply with our own legal obligations or to establish, exercise or defend legal claims.
4.3 If an exception applies, we will tell you this when responding to your request. We may request you provide us with information necessary to confirm your identity before responding to any request you make.
5. Direct Marketing
5.1 We may collect and use your personal information so we can send you emails about discounts available through our clubs.
5.2 We may send you certain marketing communications (including electronic marketing communications to existing customers) if it is in our legitimate interests to do so for marketing and business development purposes.
6.1 The main risk of our processing of your personal information is if it is lost, stolen or misused. This could lead to your personal information being in the hands of someone else who may use it fraudulently or make public information that you would prefer to keep private.
6.2 For this reason, AMD is committed to protecting your personal information from loss, theft and misuse. We take all reasonable precautions to safeguard the confidentiality of your personal information, including through use of appropriate organisational and technical measures such as physical access controls to premises, staff training, passwords for system access, anti-virus software and locking files away.
6.3 In the course of provision of your personal information to us, your personal information may be transferred over the internet. Although we make every effort to protect the personal information which you provide to us, the transmission of information over the internet is not completely secure. As such, you acknowledge and accept that we cannot guarantee the security of your personal information transmitted to our website and that any such transmission is at your own risk. Once we have received your personal information, we will use strict procedures and security features to prevent unauthorised access to it.
7. Links to other websites
9. Further questions and how to make a complaint
9.1 If you have any queries or complaints about our collection, use or storage of your personal information, or if you wish to exercise any of your rights in relation to your personal information, please contact our Data Protection Manager at email@example.com. We will investigate and attempt to resolve any such complaint or dispute regarding the use or disclosure of your personal information.
9.2 In accordance with Article 77 of the General Data Protection Regulation, you may also make a complaint to the Information Commissioner’s Office, or the data protection regulator in the country where you usually live or work, or where an alleged infringement of the General Data Protection Regulation has taken place. Alternatively, you may seek a remedy through the courts if you believe your rights have been breached.