Containous has always made information security and customer privacy a top priority. On May 25, 2018, the General Data Protection Regulation (Regulation (EU) 2016 / 679) (“GDPR”) replaces the 1995 EU Data Protection Directive (DPD) which significantly enhances the protection of the personal data of EU citizens and increases Containous’s obligations regarding lawful collection and processing of personal data.
The GDPR (General Data Protection Regulation) is a new EU Regulation which has replaced the 1995 EU Data Protection Directive (DPD). It is a law on data protection and privacy for all individuals within the European Union (EU). The GDPR aims primarily to give control back to individuals over their personal data and to simplify the regulatory environment. Being a regulation, not a directive, it forces all countries within EU to implement GDPR by May 25, 2018.
The regulation builds on many of the requirements from the 1995 directive for data privacy and security, but includes new provisions to strengthen the rights of data subjects, the individuals whose personal data is processed, and it adds harsher penalties for companies and organizations that fail to comply with the regulation.
We apply the principles of “Privacy by Design” and “Privacy by Default” and process just enough data to serve our customers, visitors to our website and individuals participating in our events in the best way possible. We process all personal data lawfully, fairly and in a transparent manner. All our employees receive education in how to handle data in order to comply with the GDPR and other regulations and applicable laws.
This Privacy Statement describes Containous’ information practices, data collection and usage practices with respect to personal data, in compliance with the GDPR and other regulations and applicable laws.
This Privacy Statement describes Containous in the role as a data controller of personal data. Containous role as a data processor is regulated by Containous’ Data Processing Agreement.
When Containous is the data controller, Containous decides the purpose and method of processing personal data. Containous is responsible for the data processed. You can at any time opt in to receive information from us as well as opt out when you desire. The possibility to opt out is presented in every communication you receive from us.
This Privacy Statement applies to contact persons at companies who are our customers, visitors on our web site, individuals participating in our events, individuals who are in contact with us for any other reason, and individuals who are contact persons at companies that we have flagged as potential customers, i.e. for anyone whose personal information we are the data controller.
We collect personal data about our customers, in particular designated contact persons at our customers, in order to deliver our services. The personal data include contact information such as name, phone number, and email address. We also collect personal data when you request information about Containous’ services, when you participate in events or sign up to receive newsletters, white papers and other material. We collect personal data such as name, phone number, email address, company name, title, country, and type of industry. You may visit our web site without registering or actively submitting personal data to us.
We may share your personal data with: companies supplying technology, storage services, administrative tools, crm tools, financial services, authorities that request personal data, any third party with which we arrange an event or conference (provided that you have given consent to such sharing).
All recipients with whom we share personal data within the EU are companies which we cooperate with and have signed Data Processing Agreements (DPA) with. All recipients with whom we share personal data with outside of the EU are companies which we cooperate with and signed Data Processing Agreements with, and comply with the Privacy Shield Framework or any other such framework approved by the EU.
The personal data will be used in order to fulfill service delivery. We may process personal data and share it with recipients globally that help us deliver our service and run our business, subject to Data Processing Agreements (DPA). We may also share aggregated usage statistics. In a reorganization or sale of our company or assets, your data may be transferred, subject to the acquirer accepting the commitments made in this Statement and compliance with applicable law.
We take appropriate technical and organizational security measures, consistent with GDPR and industry standards to ensure that all personal data we treat is protected from unauthorized access. Access to personal data is provided only to those who need it to perform their duties.
We are constantly working to protect our customers’ integrity. Our security measures include protection of personal data, information, IT infrastructure, internal and public networks, as well as office buildings and technical facilities. Processing of data is logged and checked systematically. Encryption of equipment and data is done with generally recognized and secure methods.
We may update this Privacy Statement periodically and without prior notice to you to reflect changes in our personal information practices. If we make material changes to this statement, we will notify you here, by email, or by means of a notice on our home page prior to the change becoming effective.