• Limits the collection of personal data to only the personal data needed for legitimate purposes.
• First asks for explicit consent to process your personal data in cases where your consent is required.
• Takes appropriate security measures to protect your personal data and demands the same from parties who process personal data on our behalf.
• Respects your rights, such as the right to access, correct or delete your personal data.
Gprnt processes your personal data to provide, improve, and administer our Service(s), communicate with you, for security and fraud prevention, and to comply with law. We may also process your personal data for other purposes with your consent. Gprnt processes your personal data based on a legal basis based on the General Data Protection Regulation, the grounds for processing are:
• Execution of an agreement with you
• Legitimate interest of the Gprnt or a third party
Gprnt processes certain personal data to pursue our legitimate interests. The legitimate interests of Gprnt include for example: research of own Service(s) IT management and security and maintaining customer relationships with users.
Personal data concerns information about an identified or identifiable natural person. Gprnt may process the following personal data of users such as:
• Employer’s names
• Work contact information
• (Business) email address
• Business address
• Data relating to user’s device, such as an IP address
• Browsing history
Gprnt takes appropriate technical and organizational security measures to limit misuse of, and unauthorized access to, your personal data. For example:
Secure & Restricted Access
Application access to databases is restricted. Gprnt does not allow direct access to production database by any team member, except to resolve a critical incident.
Encrypted At Rest
All data storage Service(s) within the Service(s) are, by default, encrypted at rest by Microsoft-managed keys.
Personal data will be used by Gprnt to maintain and manage user accounts, and to correctly map with the personal data coming in from various sources. Gprnt only shares your personal data with third parties when this is allowed by current legislation. It may happen that we disclose your personal information to third parties, because:
• we have engaged them to process certain personal data;
• it is necessary to carry out the agreement with you such as information that has been requested by the data consumers like, utilities, certifications and other companies that are required for ESG data reporting;
• you have given consent;
• we have a legitimate interest to do so; we are legally obliged to do so.
Currently, Gprnt may share your personal data with the following organizations:
Gprnt shall ensure that appropriate and required agreements are in place with these third parties.
Gprnt would like to send you information about products and Service(s) that we think may be interesting to you. If you provide express consent, we may process certain personal information provided by you for marketing purposes.
You can always withdraw your consent by opting out of our marketing emails at any time.
If you no longer wish to be contacted for marketing purposes, please e-mail us at: firstname.lastname@example.org.
Gprnt would like to make sure you are fully aware of all your data protection rights. You have to the following rights:
The right to access - You have the right to request Gprnt for copies of your personal data. We may charge you a small fee for this service.
The right to rectification - You have the right to request that Gprnt corrects any information you believe is inaccurate. You also have the right to request Gprnt to complete information you believe is incomplete.
The right to be forgotten - You have the right to request that Gprnt erases your personal data, under certain conditions.
The right to restrict processing - You have the right to request that Gprnt restricts the processing of your personal data, under certain conditions.
The right to object - You have the right to object to Gprnt's processing of your personal data, under certain conditions.
The right to data portability - You have the right to request that Gprnt transfers the data that we have processed to another organization, or directly to you, under certain conditions.
We will usually respond to your request within one month. This term can be extended with two months if the request is proven to be complex or tied to a specific right. If you would like to exercise any of these rights, please contact us at our email: email@example.com
If you wish to like to file a complaint about our use of your personal data, you can contact us via the contact details below. We will handle every question and request internally and communicate about it with you. However, if you do not agree with us, you have the right to file a complaint with the Singapore’s supervisory authority responsible for the protection of personal data, the Personal Data Protection Commission (PDPC).