Visitor Registry
Tidy now is committed to complying with the applicable data protection and personal legislation in United Kingdom. This includes the EU General Data Protection Regulation (GDPR) and other laws and regulations that govern the processing of personal data related to the company’s operations.
We process personal data in accordance with good data management and processing practices, and all company personnel are obligated to keep all personal data strictly confidential.
This privacy statement explains how YS ELITE LTD processes the personal data of website visitors. In this statement, the term “data subject” refers to all natural persons whose personal data is contained in the data controller’s visitor registry.
DATA CONTROLLER
Tidy now
CONTACT PERSON FOR PERSONAL DATA ISSUES
[email protected]
NAME OF THE REGISTER
Tidy now
Visitor Registry
GROUPS OF REGISTERED PERSONS
Visitors to the website tidycity.uk
PURPOSE AND LEGAL BASES FOR PROCESSING PERSONAL DATA
Personal data is used by Tidy now for:
- Improving services
- Targeting advertisements to the right audiences
- Enhancing the user experience of the website
- Planning and developing the business
We process personal data based on the consent given by the website visitor through the cookie inquiry.
CONTENT OF THE REGISTER
The following information may be stored in the register and processed. Not all of the following information may necessarily be available for every user.
- IP address
- Time of site visit
- Data on website usage, such as duration, viewed pages, and other measurable events
DATA SOURCES
Personal data is collected directly from the data subject during the website visit. Automated decision-making, such as profiling, is not utilized in the processing of personal data covered by this statement.
RETENTION PERIOD OF PERSONAL DATA
Personal data is processed for 365 days from the most recent website visit, in accordance with the recommendations of the EU Commission.
We implement all reasonable measures to ensure that inaccurate, erroneous, or outdated personal data is rectified or deleted without delay, in relation to the purposes of processing.
PRINCIPLES OF REGISTER SECURITY
We have implemented appropriate technical and organizational measures to protect personal data from accidental or unlawful loss, disclosure, misuse, alteration, destruction, or unauthorized access.
Access to the personal data register is restricted by access rights, so that only employees who have the right to access the data based on their job duties and need the information for their tasks can do so. Staff is thoroughly trained and instructed in the proper handling of personal data, and all personnel handling personal data are bound by confidentiality regarding all personal data.
The devices and information systems used for processing personal data are sufficiently technically protected, and access to them is secured by appropriate methods, including personal user accounts.
In the event of a security breach that is likely to have a negative impact on the privacy of data subjects, we will notify the relevant authorities and affected data subjects as soon as possible, if required by applicable data protection legislation.
DISCLOSURES AND TRANSFERS OF PERSONAL DATA
The processing and storage of personal data are outsourced to external service providers. We use reputable partners with whom agreements have been made to meet the requirements of the EU General Data Protection Regulation and other legislation.
We may transfer some personal data outside the EU/EEA for the technical implementation of data processing by using external service providers (such as Facebook and Google) based on cooperation agreements. These transfers are carried out securely in accordance with data protection legislation and its stipulations.
Personal data will not be disclosed outside the data controller or its data processing or storage service providers in a manner that could identify individual users, except in the following exceptional situations: when required by law or authority order, by court order, or if necessary to prevent or investigate suspected violations of law, terms of use for online services, or good practices, or to protect the rights of the data controller or third parties.
RIGHTS OF THE DATA SUBJECT
The data subject has the right to check the data concerning them in the register and to request the correction of any inaccurate, incomplete, or outdated information. A request for access can be made free of charge once a year. Requests for access and correction should be addressed to the contact person for the personal register, whose contact information can be found at the beginning of this statement. The right of all data requesters to their request will be verified before processing.
Responses to access requests will be provided within one month of the request being made. The data subject has the right to withdraw any previously given consent for data processing at any time. After this, their personal data will not be processed unless there is another legal basis for the processing. However, the withdrawal of consent does not affect the legality of the processing that has occurred prior to its withdrawal.
Additionally, the data subject may request the transfer of their personal data to another data controller if necessary. The data subject has the right, under certain conditions, to request the restriction of the processing of their personal data or to object to the processing of their personal data. The data subject has the right to lodge a complaint with the supervisory authority regarding matters related to the processing of their personal data.
UPDATES TO THE PRIVACY STATEMENT
This privacy statement was last reviewed/updated on October 21, 2024.
Tidy now monitors changes in data protection legislation and continually seeks to develop its business, and therefore reserves the right to update this privacy statement.