GDPR Privacy Policy
This Privacy Policy sets out how we, International Drivers Association, collect, store, and use information about you when you use or interact we otherwise obtain or collect information about you. This Privacy Policy is effective from 22nd February 2020.
Contents
- Summary
- Our details
- When you visit our website
- When you use our website
- Marketing communications
- Information obtained from third parties
- Disclosure and additional uses of your information
- How long we retain your information
- How we secure your information
- Transfers of your information outside the European Economic Area
- Your rights in relation to your information
- Changes to our Privacy Policy
- Children’s Privacy
Summary
- Data controller: International Drivers Association
- How we collect or obtain information about you: when you provide it to us e.g. by contacting us, placing an order on our website, completing registration forms, adding or rating locations, posting blogs, or signing up for content such as newsletters. From your use of our website, using cookies and occasionally, from third parties such as mailing list providers.
- Information we collect: name, contact details, social media information, payment information e.g. your credit or debit card details, IP address, information from cookies, information about your computer or device (e.g. device and browser type), information about how you use our website (e.g. which pages you have viewed, the time when you view them and what you clicked on, the geographical location from which you accessed our website (based on your IP address), company name or business name (if applicable), VAT number (if applicable), engagement history and transaction history.)
- How we use your information: for administrative and business purposes (particularly to contact you and process orders you place on our website, to improve our business and website, to fulfil our contractual obligations, to advertise our and other’s goods and services, to analyse your use of our website, and in connection with our legal rights and obligations.)
- Disclosure of your information to third parties: user information can be shared with partners for specific types of content and events where a user has registered their information. Other disclosures are only to the extent necessary to run our business, to our service providers, to fulfil any contracts we enter into with you and where required by law or to enforce our legal rights.
- Do we sell your information to third parties (other than in the course of a business sale or purchase or similar event): No, International Drivers Association, does not sell data. However, when you register or sign up for certain types of content, your registration data can be shared with sponsors and partners. Examples of where we do this include event registrations, webinar signups or whitepaper downloads. We will always make it clear where any information provided will be shared with other parties.
- How long we retain your information: for no longer than necessary, taking into account any legal obligations we have (e.g. to maintain records for tax purposes), any other legal basis we have for using your information (e.g. your consent, performance of a contract with you or our legitimate interests as a business) and certain additional factors described in the main section below entitled How long we retain your information. For specific retention periods in relation to certain information which we collect from you, please see the main section below entitled How long we retain your information.
- How we secure your information: using appropriate technical and organisational measures such as storing your information on secure servers, encrypting transfers of data to or from our servers using Secure Sockets Layer (SSL) technology, encrypting payments you make on or via our website using Secure Sockets Layer (SSL) technology and only granting access to your information where necessary.
- Use of cookies and similar technologies: we use cookies and similar information-gathering technologies such as marketing automation tracking on our website including essential, functional, analytical and targeting cookies. For more information, please visit our cookies policy.
- Transfers of your information outside the European Economic Area: By using our website, your information may be transferred outside of the European Economic Area. We take personal data seriously and as such we ensure appropriate safeguards are in place, including, for example, that the third parties we use who transfer your information outside the European Economic Area have self-certified themselves as compliant with the EU-U.S. Privacy Shield.
- Use of profiling: we use profiling to understand our users better through web and marketing analytics, provide targeted advertising and deliver a personalised user experience.
- Your rights in relation to your information
- to access your information and to receive information about its use
- to have your information corrected and/or completed
- to have your information deleted
- to restrict the use of your information
- to receive your information in a portable format
- to object to the use of your information
- to withdraw your consent to the use of your information
- to complain to a supervisory authority
- Sensitive personal information: we do not collect what is commonly referred to as ‘sensitive personal information’
Our details
If you have any questions about this Privacy Policy, please contact the data controller.
The data controller in respect of our website is;
International Drivers Association
Toptravel PTE. LTD.
12 EU TONG SEN STREET #08-169
THE CENTRAL SINGAPORE 059819
Tel: +1-877-533-2804
You can contact the data controller by using the details above or by sending an email to hello@internationaldriversassociation.com.
When you visit our website
We collect and use information from website visitors in accordance with this section and the section entitled Disclosure and additional uses of your information.
Web server log information
We use a third party server to host our website called CloudFlare, Inc.the privacy policy of which is available here: https://www.cloudflare.com/privacypolicy/
Our website server automatically logs the IP address you use to access our website as well as other information about your visit such as the pages accessed, information requested, the date and time of the request, the source of your access to our website (e.g. the website or URL (link) which referred you to our website), and your browser version and operating system.
Use of website server log information for IT security purposes
We collect and store server logs to ensure network and IT security and so that the server and website remain uncompromised. This includes analysing log files to help identify and prevent unauthorised access to our network, the distribution of malicious code, denial of services attacks and other cyber-attacks, by detecting unusual or suspicious activity.
Unless we are investigating suspicious or potential criminal activity, we do not make, nor do we allow our hosting provider to make, any attempt to identify you from the information collected via server logs.
Legal basis for processing: compliance with a legal obligation to which we are subject (Article 6(1)(c) of the General Data Protection Regulation).
Legal obligation: we have a legal obligation to implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk of our processing of information about individuals. Recording access to our website using server log files is such a measure.
Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interests: we have a legitimate interest in using your information for the purposes of ensuring network and information security.
Use of website server log information to analyse website use and improve our website
We use the information collected by our website server logs to analyse how our website users interact with our website and its features. For example, we analyse the number of visits and unique visitors we receive, the time and date of the visit, the location of the visit and the operating system and browser use.
We use the information gathered from the analysis of this information to improve our website. For example, we use the information gathered to change the information, content and structure of our website and individual pages based according to what users are engaging most with and the duration of time spent on particular pages on our website.
Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interest: improving our website for our website users and getting to know our website users’ preferences so our website can better meet their needs and desires.
Cookies
Cookies are data files which are sent from a website to a browser to record information about users for various purposes.
We use cookies on our website, including essential, functional, analytical and targeting cookies. For further information on how we use cookies, please see our cookies policy.
You can reject some or all of the cookies we use on or via our website by changing your browser settings or non-essential cookies by using a cookie control tool, but doing so can impair your ability to use our website or some or all of its features. For further information about cookies, including how to change your browser settings, please visit www.allaboutcookies.org or see our cookie policy.
When you contact us
We collect and use information from individuals who contact us in accordance with this section and the section entitled Disclosure and additional uses of your information.
When you send an email to the email address displayed on our website we collect your email address and any other information you provide in that email (such as your name, telephone number and the information contained in any signature block in your email).
Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interest: improving our website for our website users and getting to know our website users’ preferences so our website can better meet their needs and desires.
Legal basis for processing: necessary to perform a contract or to take steps at your request to enter into a contract (Article 6(1)(b) of the General Data Protection Regulation).
Reason why necessary to perform a contract: where your message relates to us providing you with goods or services or taking steps at your request prior to providing you with our goods and services (for example, providing you with information about such goods and services), we will process your information in order to do so).
Enquiry forms
When you contact us using an enquiry form, we collect your personal details and match this to any information we hold about you on record. Typical personal information collected will include your name and contact details. We will also record the time, date and the specific form you completed.
If you do not provide the mandatory information required by our contact form, you will not be able to submit the contact form and we will not receive your enquiry.
Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interest: improving our website for our website users and getting to know our website users’ preferences so our website can better meet their needs and desires.
We will also use this information to tailor any follow up sales and marketing communications with you. For further information, see the section of this privacy policy titled ‘Marketing Communications’.
Messages you send to us via our contact form may be stored outside the European Economic Area on our contact form provider’s servers.
Phone
Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interest: improving our website for our website users and getting to know our website users’ preferences so our website can better meet their needs and desires.
Legal basis for processing: necessary to perform a contract or to take steps at your request to enter into a contract (Article 6(1)(b) of the General Data Protection Regulation).
Reason why necessary to perform a contract: where your message relates to us providing you with goods or services or taking steps at your request prior to providing you with our goods and services (for example, providing you with information about such goods and services), we will process your information in order to do so).
Post
If you contact us by post, we will collect any information you provide to us in any postal communications you send us.
Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interest: improving our website for our website users and getting to know our website users’ preferences so our website can better meet their needs and desires.
Legal basis for processing: necessary to perform a contract or to take steps at your request to enter into a contract (Article 6(1)(b) of the General Data Protection Regulation).
Reason why necessary to perform a contract: where your message relates to us providing you with goods or services or taking steps at your request prior to providing you with our goods and services (for example, providing you with information about such goods and services), we will process your information in order to do so).