Shopping Cart

0

Your shopping bag is empty

Go to the shop

Contact information

GDPR Compliance Agreement for TKS Naturals

1. Introduction

  • This GDPR Compliance Agreement outlines TKS Naturals' ("Data Controller") obligations regarding the personal data of its customers ("Data Subjects").

2. Definitions

  • Personal Data: Any information relating to an identifiable person an identifier can directly or indirectly identify.

  • Processing: Any operation or set of operations performed on personal data or sets of personal data.

  • Data Controller, Data Processor, and Data Subject: As defined under the GDPR.

3. Principles of Data Processing

  • TKS Naturals will adhere to the principles relating to the processing of personal data set out in the GDPR, which require personal data to be:

  • Processed lawfully, fairly, and in a transparent manner.

  • Collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

  • Adequate, relevant, and limited to what is necessary about the purposes for which they are processed.

  • Accurate and, where necessary, kept up to date.

  • They are kept in a form that permits data subject identification for no longer than necessary.

  • It is processed in a manner that ensures appropriate security of the personal data.

4. Lawfulness of Processing

  • TKS Naturals shall ensure that personal data is processed lawfully, transparently, and for a specific legitimate purpose. Before personal data is processed, the individual must explicitly consent to the processing, and TKS Naturals must provide information regarding how the data will be used.

5. Data Subject Rights

  • TKS Naturals ensures that all data subjects have the right to:

  • Access their data.

  • Request correction of incorrect data.

  • Request deletion of their data under certain conditions.

  • Restrict processing and object to processing.

  • Data portability.

6. Data Protection Measures

  • TKS Naturals is committed to implementing robust technical and organizational measures to ensure data security, including encryption, ongoing confidentiality, integrity, availability, and resilience of processing systems.

7. Data Breach Notification

  • In the event of a data breach, TKS Naturals will promptly notify the relevant supervisory authority within 72 hours unless the breach is unlikely to risk the rights and freedoms of natural persons. Affected data subjects will also be notified without undue delay.

8. Data Transfers

  • Any data transfer outside the European Economic Area (EEA) will be done in compliance with the GDPR guidelines, ensuring adequate data protection is maintained.

9. Data Processor Obligations

  • Suppose TKS Naturals employs third-party services that process personal data on its behalf (Data Processors). In that case, these processors must comply fully with the GDPR and respect the confidentiality of the data subjects' data, with agreements to this effect.

10. Audit and Compliance

  • TKS Naturals will conduct regular audits to ensure compliance with this agreement and the GDPR. The Data Protection Officer (DPO) is responsible for these audits.

11. Amendments

  • This agreement may be amended occasionally to remain compliant with any law or privacy practice changes.

12. Governing Law

  • The laws of the United Kingdom shall govern this agreement.

13. Signature

  • Both parties shall provide a signed copy of this agreement, signifying their commitment to its terms.