Privacy at Onpipeline
Simple navigation and consultation of the website do not generally involve the gathering of users personal data and only relate to the processing in anonymous form of so-called navigation data.
This Notice applies to the processing of Personal Data collected by us when you :
Personal data we control include all information that may refer to natural or legal persons, for example first and last names, postal address, e-mail address and telephone number.
We inform the User that the personal data communicated and gathered in the context of the registration process are held and processed by us for the purposes listed below.
The legal ground for processing data is the consent freely given by the user. Also, the legal ground for processing data is to render our sites or applications features following the user’s access or the execution of a contract.
Processing for the aforementioned purposes occurs manually or electronically, depending on the purposes for which the data are communicated. The User must provide personal data which are true and accurate and up-to-date for purposes of creating and managing the contractual relationship with us and of utilising the Service.
Data shall be stored for a term that is strictly necessary for the management of the purposes for which the data was collected, in compliance with the law in force and the legal obligations. In any case, we have enacted practices that prohibit the storage of data for an indeterminate term and therefore limits the storage term in compliance with the principle of minimising data processing.
Data-gathering will also be with a view to transferring the data to associated companies, subsidiaries, or companies carrying out functions closely connected with and instrumental to the Service we provide.
Collected data, if necessary or fundamental to execute the indicated purposes, may be used by external third-party Processors, or depending on the case, disclosed to the same independent controllers and more specifically: The companies belonging to our corporate group, individuals, companies, associations or groups of professionals that provide assistance and advice to our Company, entities or associations that provide services connected and instrumental to carrying out the above-mentioned purposes.
In any case, personal data will never be disseminated.
Onpipeline Clients (Customers) may store or upload into our application 3rd party data. Onpipeline has no direct relationship with individuals, companies and organizations whose data it hosted. Clients are responsible for the manner in which they collect, distribute and process such information.
Each Client is responsible for providing a notice to third parties concerning the purpose for which their Personal Data is collected and how this Personal Data is processed through our application.
Onpipeline does not know the use of personal information contained within its Clients Data, is not acting as data controller and does not have the responsibilities under the GDPR. Onpipeline shall be considered only as a "processor" on behalf of its Clients.
We may work with external providers for development, hosting, systems maintenance, etc. Real data is not accessible in case of external developers, but third parties may have access to data as part of providing their services. We always limit the information provided to what is reasonably necessary, and our agreements ask them to maintain confidentiality. Third parties that have access to data and might potentially process personal information are listed in the processors section.
It is possible to access, object to the processing or request the erasure, the modification or the updating of all the personal data collected by us, at any time, by exercising the right to limit the data processing and the movement of data, by sending an email to: firstname.lastname@example.org
Onpipeline undertakes to maintain the security of all data gathered using technical and organisational tools. The safety measures are aimed at reducing to the minimum the risk of destruction or loss of data and the risk of unauthorised access, and they include the possibility of limiting access to the data to authorised Onpipeline personnel alone. Onpipeline employees acknowledge that they are bound by standards of data security and data confidentiality.
All data is held only for a period of time strictly necessary for the purposes for which the data was gathered. Without prejudice to the right to immediately block the use of data for commercial and marketing purposes, it may prove necessary to hold the data for a further period of time for purposes of satisfying legal provisions or for accounting and administrative purposes.
The parties agree that, to the extent permitted by applicable legal rules and international agreements, any disputes that happen to arise shall be submitted to the exclusive jurisdiction of the court of the area in which the Onpipeline registered office is located.
For any questions and/or inquiries: please send an e-mail to: email@example.com
Onpipeline Limited - 3 Cavendish Row - Dublin 1 - Ireland
Last update: October 22, 2020
Please see the below list of sub-processors that we engaged with, the country they operate from, and the service(s) they provide.
|Amazon Web Services||Ireland||Cloud Service Provider||Shared Responsibility Model|
The Court of Justice of the European Union (CJEU) has struck down the EU-US Privacy Shield Framework. Data controllers in the European Union (EU) can no longer rely on certifications of data recipients in the United States (US) under the Privacy Shield to justify the transfer of personal data from the EU to the US.
Onpipeline is regulated by and follows European legislation in relation to data transfers. Onpipeline is registered in Europe and doesn't need to obtain a certification under the EU-US Privacy Shield framework.
We adopt the latest technologies, practices and architecture available. We keep all our tools and services under the same roof by utilizing a market-leader in cloud computing. Amazon Web Services(AWS) provides our Engineers the flexibility and capacity to rapidly deploy and scale services on-demand. We look after your data on the cloud by implementing a number of security controls, while AWS protects your data on the cloud. They do this through physical security in their data centers.
We’ve built both internal and external security checkpoints into the application’s development pipeline. Our Engineering ensure that our coding guidelines are followed and maintained. We validate our deployments with regular ongoing assessments.
We have a long term vision for our application security that is continuously evolving, we build new features for our product and we identify reasonable opportunities to fand maintain a conscious security mindset.
Information Security Policy is the overarching collection of policies implemented to ensure the confidentiality, integrity, and availability of the data we store. Our policies ensure that we provide all our team members with the necessary practices to build upon the strong foundations of their security onboarding. We utilize these policies daily.