Data Privacy Statement

DATA CONTROLLER INFORMATION

AO Kaspersky Lab, located at address: 39A/3 Leningradskoe Shosse, Moscow 125212, Russian Federation and Kaspersky’s affiliates’ («Kaspersky», «Kaspersky Lab», «KL» or «we»)

If you have any questions regarding the processing of your personal information, please contact our Kaspersky Lab EU representative via e-mail or phone: Kaspersky Labs GmbH, Ingolstadt, Germany, info@kaspersky.de, +49 (0) 841 98 18 90

If you have any additional questions about Kaspersky Lab’s privacy practices or if you would like us to update any information or preferences you have provided us with, please contact our Data Protection Officer here.

YOUR PERSONAL DATA — WHAT IS IT?

Personal data is information that is related to an identifiable living individual. Identification can be by the information alone or in conjunction with any other information in the data controller’s possession or likely to come into such possession. The processing of personal data is governed by [the General Data Protection Regulation 2016/679 (the «GDPR»)

WHY WE PROCESS YOUR PERSONAL DATA

We use your personal data to search for your personal data in public Internet sources and in publicly available government sources (e.g. patent databases, company registrations, etc.).

The service provides users with the results of the search for personal data in public Internet sources that do not require identification as the owner of these personal data. Such sources of data may include public Internet resources, publicly available government sources and other sources of data that can be found via standard search services. Additionally, Privacy Audit may provide information about data comprised from social network accounts.

The service provides an electronic report that is available for 15 days and is automatically deleted afterwards. This report contains the information found and the address of the information on the Internet (URL).

THE CATEGORIES OF PERSONAL DATA

We process the following categories of your data:

  • First Name
  • Last Name
  • Phone number
  • E-mail

We obtain your personal data from you directly.

WHAT IS OUR LEGAL BASIS FOR PROCESSING YOUR PERSONAL DATA

Our lawful basis for processing your general personal data:

  • Processing necessary for the performance of a contract with the data subject or to take steps to enter into a contract.
  • Processing necessary for compliance with a legal obligation.

Sharing Your Personal Data

  • Your personal data will be treated as strictly confidential and will only be shared with employees of Service Providers that provide us with IT and system administration services

In such cases, these companies must abide by our data privacy and security requirements and are not allowed to use personal data they receive from us for any other purpose

TRANSFER OF DATA ABROAD

The personal data provided by users to Kaspersky Lab can be processed in the following countries, including countries outside European Union (EU) or the European Economic Area (EEA): Germany, Netherlands, France, United Kingdom, Switzerland, Canada, Singapore, Russia, USA. According to our general business practice, the data received from users in the EU are processed on servers located in the EU. The personal data may be processed at destinations outside the European Union (EU) or the European Economic Area (EEA) some of which have not been determined by the European Commission to have an adequate level of data protection.

However, Kaspersky Lab has taken appropriate security measures to protect your personal data in accordance with security and privacy best practices, including, utilizing the European Commission’s Standard Contractual Clauses for transfers of personal information between its group companies, which requires all group companies to protect personal information being processed from the European Economic Area to an equivalent standard to that required under European Union data protection law. Where we share your personal data with a third party service provider outside of the European Economic Area and Switzerland (as detailed in the section entitled «Sharing your information»), we contractually oblige the third party service provider to implement adequate safeguards to protect your information.

HOW LONG DO WE KEEP YOUR PERSONAL DATA?

The service provides an electronic report that is available for 15 days, and automatically deleted afterwards.

AUTOMATED DECISION MAKING

We do not use automated decision making at Privacy Audit.

YOUR RIGHTS AND YOUR PERSONAL DATA

Also, you have certain rights regarding the personal data we maintain about you:

  • Right to be informed. You have the right to be provided with clear, transparent and easily understandable information about how we use your personal data, and your rights.
  • Right of access. This enables you to receive a copy of the Personal Data we process about you and to check that we are lawfully processing it.
  • Right to rectification. You have the right to request that the Personal Data that we process about you be corrected.
  • Right to erasure (Right to be forgotten). This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it.
  • Right of restriction of processing. This enables you to ask us to suspend the processing of Personal Data about you, for example if you want us to establish its accuracy or the reason for processing it
  • Right to data portability. You have the right to request the transfer of your Personal Data. We will provide to you, or a third party you have chosen, your Personal Data in a structured, commonly used, machine-readable format.
  • Right to object. You may object at any time to our processing of your personal data when such processing is based on our legitimate interests.
  • Right to withdraw data protection consent. If you withdraw your consent, we may not be able to provide you with access to the certain specific functionalities of our Site. We will advise you, if this is the case, when you withdraw your consent.
  • Right to complain. You have the right to contact the data protection authority of your country in order to lodge a complaint against our data protection and privacy practices
  • The right to deactivate cookies. If you wish to restrict or block all the cookies which are set by our websites, please use the tool available on the particular website (if applicable), or refer to the Help function within your browser to learn how to manage your settings within your browser.

HOW TO EXERCISE YOUR RIGHTS

If you wish to exercise these rights, you may, at any time, contact us directly.

Typically, you will not have to pay a fee to access your Personal Data (or to exercise any of the other rights). However, except in relation to Consent Withdrawal, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive, or, we may refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your Personal Data (or to exercise any of your other rights). This is a security measure meant to ensure that Personal Data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

COMPLAINTS

If you would like to make a complaint regarding this Privacy Policy or our practices in relation to your Personal Data, please contact us here.

If you believe that the processing of your personal data violates applicable data protection laws, you have the right to lodge a complaint with a competent supervisory authority at any time. Which supervisory authority has competence for your complaint will depend on the country where you reside.