Last revised: 9 November 2018
Legal grounds and purposes of data processing:
Your provided data, i.e. e-mail address, first name, last name, position, organization, will be processed by the below specified data controllers based on your consent for the direct marketing purposes.
Controller(s) of personal data:
Deloitte Central Europe entities conducting marketing activities – SIA Deloitte Latvia, legal entity code - 40003247787, address - Gredu st. 4a, Riga, LV-1019, Latvia, SIA Deloitte Audits Latvia, legal entity code - 40003606960, address - Gredu st. 4a, Riga, LV-1019, Latvia, ZAB Deloitte Legal, address - Gredu st. 4a, Riga, LV-1019, Latvia.
Processors of personal data:
Wanadis Kereskedelmi és Szolgáltató Kft, legal entity code 01-09-885144, address - 1112 Budapest Budaörsi út 153. Hungary.
In case where the data processing include the transfer outside of the European Union (EU) the transfer is based on EU approved standard contractual clauses, thus ensuring an adequate level of personal data protection as required by the applicable data protection laws.
The personal data controller and data processor shall establish technological, physical, administrative and procedural safeguards all in line with the industry accepted standards in order to protect and ensure the confidentiality, integrity or accessibility of your personal data processed; prevent the unauthorized use of or unauthorized access to your personal data or prevent a personal data breach (security incident) in accordance with Deloitte CE instructions, policies and applicable laws.
Recipients of personal data:
The personal data will be made accessible to the following categories of recipients: the authorized employees and representatives of the above listed controllers and processors and to Deloitte CE group of companies.
Your personal data may be also disclosed to the competent authorities as authorized by the applicable laws.
The period for which your personal data will be processed:
The data will be processed until the consent is withdrawed or as long as data is necessary to fulfil above mentioned purposes of data processing. After the indicated period expires your personal data will be permanently deleted.
You as a personal data subject have the right to request from the controller access to and rectification or erasure of your personal data or a restriction on the processing or to object to the processing, as well as the right to data portability, the right to withdraw your consent at any time, the right to obtain a copy of the data. All rights described in this paragraph can be enforced by sending an e-mail request to the data controller at email@example.com. You also have the right to lodge a complaint with the State Data Protection Inspectorate in case you consider that the processing of your personal data infringes the applicable laws.