Tristen Menslage Coaching LLC is dedicated to safeguarding the privacy of our users and their customers. We continually stay informed about data protection laws to ensure your safety and confidence while using our platform.
This page outlines the rules, their relevance to your use of the Tristen Menslage Coaching LLC platform, and the steps we've taken to comply with them.
Please review this document alongside our Privacy Policy, and consult a legal professional if you need further information or advice.
The General Data Protection Regulation (GDPR), formally known as Regulation (EU) 2016/679, is an EU regulation designed to unify data protection and privacy laws across the EU. GDPR applies whenever personal data of an EU data subject is involved.
The regulation empowers individuals by giving them greater control over how their data is used by companies and promotes transparency in data collection and processing.
Following Brexit, the GDPR was integrated into UK law as the 'UK GDPR,' which continues to apply to UK businesses.
Controller and Processor
Under the GDPR, obligations differ based on whether a party is a data controller or a data processor.
A controller is an entity that decides to process personal data and determines the purposes and methods of processing. Controllers have specific obligations regarding personal data, which you must understand before collecting data from your customers.A processor is an entity that processes data on behalf of a controller, following the controller’s instructions without making independent decisions about the data.
When you use the Tristen Menslage Coaching LLC platform, you act as a controller, managing the data you upload and determining its usage and purpose. Consequently, you are responsible for ensuring that your data processing has a legal basis and that the data is not retained longer than necessary.
Tristen Menslage Coaching LLC functions as a data processor. We store and manage the data you collect, strictly following your instructions. We do not use or process your data for our purposes without your consent.
Legal Basis for Processing
Personal data can only be collected and processed if there is a legal basis for doing so, as outlined in the GDPR.
As a processor, Tristen Menslage Coaching LLC relies on our customers to select the appropriate legal basis for collecting and processing personal data and to provide the necessary notices and consents. Before using our service, you should identify the relevant legal bases and only collect and retain data as needed for that purpose. Avoid changing the legal basis without valid reasons, as it is crucial to select the correct one from the start.
Data Subject Access Rights
The GDPR grants data subjects (your customers) specific rights over their personal data, including the right to access, correct, or delete their data.
Tristen Menslage Coaching LLC has implemented user-friendly systems to handle data subject requests promptly, ensuring that they are addressed according to your instructions. You should be aware of your obligations regarding any personal data you hold, whether within the Tristen Menslage Coaching LLC platform or elsewhere.
Transfers of Data to the USA
Personal data may only be transferred outside the EEA under specific conditions. We use Standard Contractual Clauses as part of our Data Processing Agreement, which we sign with all customers, to ensure compliance.
We have established robust security measures to ensure the safe storage of personal data. Our products are regularly tested for vulnerabilities, and we maintain comprehensive data backup, recovery, and integrity systems to minimize the risk of data loss or corruption.
We take our responsibilities as a processor seriously and have implemented several procedures to maintain GDPR compliance, allowing you to lawfully transfer personal data to us. These measures include:
Using Standard Contractual Clauses in our Data Processing Agreement to facilitate lawful data transfers to the USA.Detecting personal data breaches and promptly informing our customers.Managing data subject access and erasure requests, ensuring you are notified when such requests are received.Assessing and documenting the personal data we process on your behalf.Evaluating and upgrading our security measures to address potential risks related to data breaches.
Review and Sign our Data Processing Agreement
Updated: August 19, 2024