Last Updated: June 1, 2022
● Our privacy commitment
We, INSCOR LLC ("We", "us" or "INSCOR"), as the responsible party within the meaning of data protection law, are committed to handle personal data in a way that neither we nor anyone else can process them to harm people's rights and freedoms. INSCOR does not rent or sell your data to third parties.
This Privacy Notice is to provide information to you, the data subjects, about why and how your personal data is processed by INSCOR.
This Policy is a public document and has been developed in accordance with the requirements of General Data Protection Regulation.
● Scope of this Privacy Notice and terminology
This Privacy Notice applies to the personal data processings, where INSCOR acts as Controller: website of INSCOR, and the information we process on our clients and prospective clients.
The terms "Controller", "Processor", "Personal Data", "Processing" shall have the meaning as described in the General Data Protection Regulation (GDPR).
"Client organisation" means a company (such as insurance companies, taxi and car sharing companies, carmakers and cardealers, fleet management services), with whom INSCOR has a service provision contract, and who subcontract INSCOR for purposes such as improving driving safety, increase of customers satisfaction with the work of the insurance company, fraud avoidance, service improvement etc.
"Potential Client organisation" means a company who will potentially become a Client organisation.
Our contact details are:
INSCOR LLC (12 Parkovo-Syrets'ka str., office 12, Kyiv 04112, Ukraine).
The sections below describe how your personal data is processed according to the relationship between you and INSCOR. If you think there is any info missing, unclear or incorrect then please let us know email@example.com so we can fix it.
● When you use our website (cookies)
A cookie is a small piece of data that is sent by the web server and stored on the website visitor's computer. We set cookies using some third-party services (such as Google Analytics ) to enhance the functions of the site, which result in trackers being active. These third parties include: Google LLC (head office registered at 1600 Amphitheatre Parkway in Mountain View, California, United States).
These processings are governed by contracts, such as Data Processing Amendment to the Google Analytics Agreement and EU Model Contract Clauses with Google.
Through cookie IDs (aggregated, often anonymised data) we are able to collect and analyse statistics about user behavior on our website, which allows us to enhance the functions of the site. This behavioral data includes information about how visitors access and view our website, information about differentiation between site visitors, information about customer interaction with our ads. We only set cookies if we are given your explicit consent. We retain cookie related data for a maximum of 2 years from the date of site visit. Some of that data is deleted after a minute, such as cookies, that allow us to track how visitors access and view our website. You can also disable cookies to prevent your browser from giving us information, but if you do so, certain website features may not work properly.
● If you work at a INSCOR Client / potential Client organisation:
When your organisation decides for a testing of our device and we think you will benefit from our newsletter
If you work at a INSCOR Client organisation and have some communication with us, we might send you news about our company and products. For that we will use your email address, and possibly name and/or surname. This processing is based on the legal basis of legitimate interest (Art. 6, 1(f) GDPR). This data is retained until you object to the processing, or until we decide that our legitimate interest no longer stands.
When we need to conduct a customer reliability test (applies to top management of client companies)
When we need to conduct a customer reliability test (applies to top management of client companies) According to the Ukrainian law we are obliged to verify the trustworthiness of our Clients. For that we ask to provide us with some personal data of top managers and the beneficiaries of the company. This data includes: name, title, nationality, date of birth of top managers, board of directors, beneficial owners as well as other individuals who have a beneficial interest. This data also includes information about individuals that the UK, the EU, the US or the UN has listed as the target or subject of any sanctions, if they own a INSCOR Client company.
If you communicate with INSCOR (e.g. in order to enter into a contract with us)
If you are the individual point of contact at another business (such as Client organisation or Potential Client organisation), then we will need to use some of your personal data for communication. Such data includes your name(s), work email or other communication contact(s). We process this data on the legal basis of our legitimate interest (Art. 6, 1(f) GDPR).
● Your rights:
As a Controller we make an effort to facilitate the exercise of data subject rights.
Here are the rights that you have in regard to the processing of your personal data:
...to be informed about our processing:
You have the right to have a clear explanation of the processing of your personal data provided to you – we hope that's what we have achieved with this privacy notice.
...to have access to your data and details of our processing:
Exercising this right is known as "making a subject access request:
You have the right to ask us:
whether we are processing your personal data
why we are doing so
under what lawful basis we are processing your data
the categories of personal data about you which we are processing
whether the data is being sent outside the EU
the names of any other recipients your data has been passed to, and the purpose and lawful basis for the transfer
how long we're going to keep the data, or what criteria we'll use to decide whether to keep it
for a copy of the data we are processing.
We'd much appreciate it if you would use firstname.lastname@example.org to make a subject access request, as this allows us to identify and handle requests consistently.
...to object to some processing
You have the right to ask us to stop processing your personal data for direct marketing purposes, and if you make this request we will stop sending you marketing and exclude your data from any analytics or reporting we do for marketing.
You can object to any processing of your personal data where that processing is based on legitimate interests. When you make an objection, we will revisit the balancing test that was done for the original Legitimate Interests Assessment and decide on a case-by-case basis whether we should cease the processing of your personal data.
...to have some data deleted
This right is sometimes referred to as "the right to be forgotten". It only applies in narrow circumstances, where -
you have withdrawn your consent and there is no further legitimate interest in continuing to process the data,
your objection to our processing under legitimate interests outweighs those interests,
the processing of your personal data is no longer necessary,
there is a law that requires the data to be deleted, or
the processing is unlawful (we work hard to make sure this is never the case!)
- you have the right to have your data erased from our systems and files.
We can't erase any data which we are required by law to process, but we will highlight and explain this to you if your request includes this data.
...to limit how your personal data is used
Under some circumstances, you can limit how your personal data is used by us
the personal data we are processing is inaccurate
our processing is unlawful
the data is no longer necessary for the original purpose of processing but needs to be kept for potential legal claims, or
you have objected to processing carried out under legitimate interests and we're still in the process of determining whether there is an overriding need to continue processing
- you have the right to restrict the processing. This means that the data will only be processed:
with your consent,
for the establishment, exercise or defence of legal claims, to protect someone else's rights, or
if there is an important public interest justification for processing
...to take some of your data elsewhere
The right of data portability says that you can ask for any data that we process by automated means (which means 'using a computer') which
you provided to us either on the basis of consent or
because it was necessary for a contract that you are directly a party to;
-to be provided back to you in a computer-based format, or sent directly to another Data Controller.
This is mostly intended for you, the individual end user or consumer, to be able to switch providers without your data being held hostage.
...to query automated decision-making
We don't do any automated decision-making or automated profilings Controllers, but if we did, you would have the right to ask us to explain the logic behind any such decisions and for the decision to be reviewed by a human being, if the decision had an effect on your rights or freedoms.
...to have data corrected
If any of the data we hold on you is inaccurate or out of date, please let us know so that we can correct it as quickly as possible.
If you're not happy with any aspect of how we process your personal data, please let us know so that we can make things right. If you're not satisfied with our response, you have the right to make a complaint to a Data Protection Authority.