1.1. Your personal data are processed by Doosan Power Systems SA, Doosan House, Crawley Business Quarter, Manor Royal, Crawley, West Sussex, RH10 9AD (hereinafter: “Doosan”, “we”, “us”, “our”). You can contact us via e-mail at email@example.com.
1.3. Where reference is made to certain laws or regulations, such reference shall also include any change, replacement or annulment of said laws or regulations, including any related executive decisions.
2.1. Whenever you use our Website or Social Media Channels, we collect:
2.2. When you contact us via e-mail, telephone, or Social Media Channels, we collect:
3.1. We process your personal data to provide you in a personalised and efficient way with the information, products and services you request via the Website, e-mail, telephone, and Social Media Channels.
3.2. We process your personal data for marketing purposes, i.e. to provide you with targeted communications, promotions, offerings and other advertisements of Doosan.
3.3. We process your personal data to comply with legal obligations or to comply with any reasonable request from competent law enforcement agents or representatives, judicial authorities, governmental agencies or bodies, including competent data protection authorities.
Your personal data may be transferred upon Doosan’s own initiative to the police or the judicial authorities as evidence or if there are justified suspicions of an unlawful act or crime committed by you through your registration with or use of the Website, our Social Media Channels or other communication with us.
4.1. The processing of your personal data for the purposes outlined in clause 3.3 is necessary to allow Doosan to comply with our legal obligations.
4.2. The processing of your personal data for the purposes outlined in clauses 3.1, and 3.4 is necessary for the purpose of the legitimate interests of Doosan, which are:
5.1. We do not send your personal data in an identifiable manner to any third party without your explicit permission to do so. You understand, however, that if you use our Social Media Channels, your personal data is also processed by the social media providers.
5.2. We rely on third party processors to provide you the Website as well as to process your personal data on our behalf. These third party processors are only allowed to process your personal data on behalf of Doosan upon explicit written instruction of Doosan. Doosan warrants that all third party processors are selected with due care and are obliged to observe the safety and integrity of your personal data.
6.1. We process your personal data first and foremost within the EEA. However, in order to process your personal data for the purposes outlined in clause 3 above, we may also transfer your personal data to other entities within the Doosan group or to third parties who process on our behalf which are located outside the EEA. Each entity outside the EEA that processes your personal data shall be bound to observe adequate safeguards with regard to the processing of your personal data. Such safeguards will be the consequence of:
6.2. We may transfer anonymised and/or aggregated data to organisations outside of the EEA. Should such transfer take place, Doosan will ensure that there are safeguards in place to ensure the safety and integrity of your data as well as all rights with respect to personal data you might enjoy under applicable mandatory law.
7.1. We do our utmost best to process only those personal data which are necessary to achieve the purposes listed under clause 3.
7.3. You understand that an essential aspect of our marketing efforts pertains to making our marketing materials more relevant to you. This means that we build a profile of you based on relevant characteristics as outlined in clause 2.
7.4. We will take the appropriate technical and organisational measures to keep your personal data safe from unauthorised access or theft as well as accidental loss, tampering or destruction. Access by personnel of Doosan or our third party processors will only be on a need-to-know basis and subject to strict confidentiality obligations. You understand, however, that safety and security are best efforts obligations only which can never be guaranteed.
8.1. You have the right to request access to all personal data processed by us pertaining to you. We reserve the right to charge an administrative fee for multiple subsequent requests for access that are clearly submitted for causing nuisance or harm to Doosan.
8.2. You have the right to ask that any personal data pertaining to you that are inaccurate, are corrected free of charge. If a request for correction is submitted, such request shall be accompanied of proof of the flawed nature of the data for which correction is asked.
8.3. You have the right to withdraw your earlier given consent for processing your personal data, in which case clause 8.4 will apply.
8.4. You have the right to request that personal data pertaining to you be deleted if they are no longer required in light of the purposes outlined in clause 3 or if you withdraw your consent for processing them. However, you need to keep in mind that a request for deletion will be evaluated by Doosan against:
8.5. You have the right to oppose the processing of personal data if you are able to prove that there are serious and justified reasons connected with this particular circumstance that warrant such opposition. However, if the intended processing qualifies as direct marketing, you have the right to oppose such processing free of charge and without justification.
8.6. You have the right to receive from us in a structured, commonly used and machine-readable format all personal data you have provided to us.
8.7. If you wish to submit a request to exercise one or more of the rights listed above, you can send an e-mail to firstname.lastname@example.org. An e-mail requesting to exercise a right shall not be construed as consent with the processing of your personal data beyond what is required for handling your request. Such request should clearly state which right you wish to exercise and the reasons for it if such is required. It should also be dated and signed, and accompanied by a digitally scanned copy of your proof of identification e.g. passport, driving license etc. If you use the contact form, we may ask you for your signed confirmation and proof of identity.
We will promptly inform you of having received this request. If the request proves valid, we shall honour it as soon as reasonably possible and at the latest thirty (30) days after having received the request.
If you have any complaint regarding the processing of your personal data by us, you may always contact our Data Protection Officer (email@example.com). If you remain unsatisfied with our response, you are free to file a complaint with the Information Commissioners Office – www.ico.org.uk.