At ETM Global Limited, we are committed to complying with the General Data Protection Regulation (GDPR) and ensuring the protection of the personal data of individuals. This policy outlines how we collect, process, store, and protect personal data in accordance with GDPR.

1. Scope and Purpose

This policy applies to all personal data collected, processed, and stored by ETM Global Limited, whether from clients, suppliers, employees, or other stakeholders. The purpose is to ensure transparency, accountability, and lawful data handling practices in compliance with GDPR.

2. Key Definitions

Personal Data: Any information relating to an identified or identifiable natural person, including but not limited to name, address, email, phone number, or IP address.
Data Subject: The individual whose personal data is processed.
Data Controller: ETM Global Limited, responsible for determining how and why personal data is processed.
Data Processor: Any third party processing personal data on behalf of ETM Global Limited. Processing: Any operation performed on personal data, including collection, recording, storing, sharing, and destruction.

3. Lawful Basis for Processing

We process personal data in compliance with the GDPR and only when:

Consent: The data subject has given explicit consent for one or more specific purposes
Contractual Necessity: Processing is necessary for the performance of a contract with the data subject or to take steps at their request before entering into a contract.
Legal Obligation: Processing is necessary for compliance with a legal obligation to which ETM Global Limited is subject.
Legitimate Interests: Processing is necessary for the legitimate interests of ETM Global Limited, provided these interests are not overridden by the data subject’s rights and freedoms.

4. Personal Data Collection

We collect personal data through various means, including:

Direct interactions (e.g., inquiries, contracts, bookings).
Automated technologies (e.g., cookies, website analytics).
Third-party data processors (e.g., payment processors, service providers). Types of Personal Data Collected:

Identification data: Name, date of birth, passport number.
Contact data: Email address, telephone number, address.
Financial data: Payment details.
Technical data: IP address, browsing information.
Other personal data necessary for fulfilling the services we provide.

5. Data Subject Rights

Under GDPR, data subjects have the following rights regarding their personal data:

Right of Access: To obtain confirmation of whether personal data is being processed and access to such data.
Right to Rectification: To request corrections of inaccurate or incomplete personal data.
Right to Erasure (Right to be Forgotten): To request deletion of personal data when it is no longer necessary or processed unlawfully.
Right to Restrict Processing: To request limited use of personal data in specific circumstances.
Right to Data Portability: To receive personal data in a structured, commonly used, and machine-readable format and to transfer it to another data controller.
Right to Object: To object to the processing of personal data based on legitimate interests or direct marketing.
Right to Withdraw Consent: To withdraw consent at any time, where consent is the lawful basis for processing.

6. How to Exercise Your Rights

Data subjects can exercise their rights by submitting a request to ETM Global Limited:

Email: sales@etmglobaleurope.com
Postal Address: 82 James Carter Road, Mildenhall, Edmunds, IP28 7DE, United Kingdom
We will respond to all requests within one month, as required by GDPR.

7. Data Sharing

We may share personal data with:

Service Providers: Third parties who process data on our behalf (e.g., payment processors, IT services). These providers are bound by confidentiality agreements and data processing contracts.
Group Companies: Other companies within the ETM Global Limited group, if necessary, to provide our services.
Public Authorities: When required by law, we may share data with government bodies, regulatory authorities, or law enforcement.
Third Parties: In connection with business transactions (e.g., mergers, acquisitions), ensuring that appropriate safeguards are in place.
We do not share personal data with third parties for marketing purposes without explicit consent.

8. Data Security

We take appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, destruction, or damage. This includes:

Encryption of sensitive data.
Regular reviews of security practices and IT systems.
Access controls ensure only authorized personnel can access personal data.

9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected and in accordance with legal requirements. Once no longer needed, data will be securely deleted or anonymized.

10. International Data Transfers

If personal data is transferred outside of the European Economic Area (EEA), we ensure that the transfer is legally permitted by using appropriate safeguards, such as:

Standard Contractual Clauses: For transfers to countries without an adequacy decision from the European Commission.
Binding Corporate Rules: For internal data transfers within ETM Global Limited group companies.

11. Data Breaches

In the event of a personal data breach, ETM Global Limited will notify the relevant supervisory authority within 72 hours, unless the breach is unlikely to result in a risk to individuals’ rights and freedoms. We will also notify affected individuals if the breach poses a high risk to their rights and freedoms.

12. Third-Party Processors

Where third-party service providers process data on our behalf, they are carefully selected and required to comply with GDPR standards through data processing agreements.

13. Changes to This Policy

We may update this GDPR policy from time to time. If significant changes are made, we will notify affected individuals in accordance with GDPR requirements.

14. Contact Information

If you have any questions regarding this GDPR policy or how your personal data is handled, please contact us at:

ETM Global Limited

82 James Carter Road, Mildenhall, Edmunds, IP28 7DE, United Kingdom

Email: dataprotection@etmglobaleurope.com

Phone: +44 1753 945588

By using our services, you acknowledge that you have read and understood this GDPR policy and agree to its terms.