Overview of data protection policy
The following information sets out how we (Endurance P.C) collect, use, disclose and retain any personal data collected and how individuals may interact with us about it.
The data on this website is processed by Endurance P.C. The collection and processing of personal data by Endurance P.C, is in full compliance with the EU General Data Protection Regulations 2016/679 (“GDPR”) and other applicable privacy laws.
Kind of personal data collected/ purpose/ legal basis.
We collect your data as a result of your sharing your data with us. This may be information you enter into our contact form and/or information shared, in view of your contractual relationship with us (i.e KYC forms).
Personal data includes, for example, information such as your name, location data, online identifier, address, telephone number, passport/ID data, corporate and billing address, payment method, bank details (account number/Swift Code, including payment card). Statistical information that cannot be directly or indirectly associated with you – such as measuring traffic on our website – is not considered personal data.
Other data shall be recorded by our IT systems automatically or after you consent to its recording during your website visit. This data comprises primarily technical information (e.g., web browser, operating system), or for website management and security purposes. This information is recorded automatically when you access this website.
If you have consented to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR or Art. 9 (2)(a) GDPR.
If you have consented to the storage of cookies (see below) said consent can be revoked at any time.
If your data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR.
If your data is required for the fulfillment of a legal obligation, we process it on the basis of Art. 6(1)(c) GDPR.
In all other cases the processing is based on our legitimate interest and/or in the effective processing of your requests, data and notifications addressed to us (Art. 6(1)(f) GDPR) or on your agreement (Art. 6(1)(a) GDPR) if this has been requested.
In any case, your personal data is collected only to the extent necessary: it will be processed solely for the purposes mentioned above. Regarding Data collected from Cookies, please see below to Cookies chapter.
We may perform some of our operations by relying on third-party suppliers/business associates. The personal data that you provide may be shared with them in order to enable them to perform the required tasks. However, these suppliers/business associates are required to exclusively use the received information for the respective services on behalf and as instructed by us and they are obliged to comply with the applicable data protection regulations in place.
Third parties may have access to your personal data without your consent, only if there is a legal basis for it.
Protection of personal data:
We have established the security in accordance with the GDPR principles. We undertake technical and organizational measures relating to data security in order to guarantee an adequate level of protection regarding confidentiality, integrity, availability of the data and resilience of the systems.
We may use tools of companies domiciled outside EU, which are from a data protection perspective, non-secure countries. If these tools are active, your personal data may potentially be transferred to these non-EU countries and may be processed there. We must point out that in these countries, a data protection level that is comparable to that in the EU cannot be guaranteed. We have no control over these processing activities.
Transfer of personal data/storage/duration
Where a data transfer may be necessary, we will take necessary steps to ensure that your personal data has the level of protection required by the GDPR.
We may store your personal data in various locations and with different service providers (i.e., external datacenters).
Personal data is retained for as long as needed to achieve the purposes as described in this Policy, or if we have another legal basis that requires a longer storage period. We will delete personal data once they are no longer necessary to achieve the purposes for which they have been collected.
If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention) or to establish, assert, exercise and/or defend actual or potential legal claims, investigations or similar proceedings, including legal holds. In the latter case, the deletion will take place after these reasons cease to apply.
Your privacy rights:
You have the right, subject to the applicable local data protection legislation, to:
- request access to, and receive a copy of, the personal data we hold about you (‘Right to access’, Art. 15 GDPR);
- if appropriate, request rectification or erasure of the personal data that are inaccurate (‘Right to rectification’, (Art. 16 GDPR);
- request the erasure of the personal data, subject however to applicable retention periods (‘Right to be forgotten’, Art. 17 GDPR);
- request a restriction of processing of the personal data where the accuracy of the personal data is contested, the processing is unlawful, or if the Data Subjects have objected to the processing (‘Right to restriction of processing’, (Art. 18 GDPR);
- object to the processing of the personal data (‘Right to object’, Art. 21 GDPR);
- receive the personal data in structured, commonly used and machine-readable format (‘Right to data portability’, Art. 20 GDPR);
- complain in relation to the processing of the personal data and, absent a satisfactory resolution of the matter, file a complaint in relation to the processing of the personal data with the relevant European data protection supervisory authority.
Subject to the limitations set forth herein and/or in applicable local data protection laws, you can exercise the above rights free of charge by contacting us at: [email protected].
Our website uses “cookies.” Cookies are small text files that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or they are permanently archived on your device (permanent cookies). Session cookies are automatically deleted once you terminate your visit. Permanent cookies remain archived on your device until you actively delete them, or they are automatically eradicated by your web browser.
In some cases, it is possible that third-party cookies are stored on your device once you enter our site (third-party cookies). These cookies enable you or us to take advantage of certain services offered by the third party (e.g., cookies for the processing of payment services).
Cookies have a variety of functions. Many cookies are technically essential since certain website functions would not work in the absence of the cookies (e.g.the display of videos). The purpose of other cookies may be the analysis of user patterns or the display of promotional messages.
We use Google Analytics, a web analytics service made by Google, Inc. (“Google”). Once you agree for the file to be added, the cookie helps analyze web traffic or your visit/use of a particular website (including your IP address) and will be transmitted and stored by Google servers. This web application gathers data on your interests and save your personal preferences. By doing so, you do not have to re-enter your preferences each time you visit the website.
Cookies help us to provide you with a better website, by enabling us to monitor which pages of our website that you find useful and which you do not. Cookies do not provide us with access to your computer.
We will not use this information in connection with any personally identifiable information you have provided. Before cookies are placed on your computer or device, you may choose to accept or decline, following an automatic prompt which will appear requesting you to do so. Most web browsers automatically accept cookies by default, but you can modify your browser setting to decline cookies if you would prefer, however this may prevent you from availing full advantage of our website.
Our website uses the consent technology of Cookie Notice & Compliance for GDPR to obtain your consent for the archiving of certain cookies on your device or for the use of certain technologies and for the data protection compliant documentation of the former.
Cookie Notice & Compliance for GDPR is installed locally on our servers so that a connection with third party servers does not occur. Cookie Notice & Compliance for GDPR stores a cookie in your browser to be able to allocate the granted consent and their revocation to you. The cookie stays active for 1 month. Your data is stored until you ask us to delete it, delete the consent cookie yourself or the purpose of data archiving is no longer valid. This does not affect mandatory statutory retention periods.
SSL and/or TLS encryption
For security reasons and to protect the transmission of confidential content, such as KYC forms, purchase orders or inquiries you submit to us as through the website, this website uses either an SSL or a TLS encryption program. You can recognize an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line.
If the SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.
Endurance P.C reserves the right to review this Policy periodically and where necessary, due to changes in business operations or data protection regulations. Any updated version of this Policy will be uploaded on our website, so you may consistently be aware of what and how data is processed.