Servertastic GDPR Information

  Print
The General Data Protection Regulations (GDPR) take effect on 25 May 2018 within the EU. As a UK company Servertastic Limited is required to be compliant with GDPR.

For more information about GDPR please refer to UK Regulator ICO guidance.

For full details of the data we process and how it is handled please refer to our Privacy Policy.

In general personal data held by Servertastic is periodically deleted if it has been more than 72 months since the last purchase made by the data subject. Personal data held for marketing purposes can be deleted on request.

We may process Personal Data relating to Users if one of the following applies:
  • Users have given their consent for one or more specific purposes. Note: Under some legislations the Owner may be allowed to process Personal Data until the User objects to such processing (“opt-out”), without having to rely on consent or any other of the following legal bases. This, however, does not apply, whenever the processing of Personal Data is subject to European data protection law;
  • provision of Data is necessary for the performance of an agreement with the User and/or for any pre-contractual obligations thereof;
  • processing is necessary for compliance with a legal obligation to which the Owner is subject;
  • processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Owner;
  • processing is necessary for the purposes of the legitimate interests pursued by the Owner or by a third party.
Personal Data shall be processed and stored for as long as required by the purpose they have been collected for:
  • Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.
  • Personal Data collected for the purposes of the Owner’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Owner within the relevant sections of this document or by contacting the Owner.
We may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing, as long as such consent is not withdrawn. Furthermore, we may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.

Once the retention period expires, Personal Data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.


Related Articles