Legitimate Interests and the Fair Processing of Data
How do we use your personal information?
We may process your personal information for our legitimate business interests.e.g. direct marketing/network and information systems security/data analytics/enhancing, modifying or improving ourservices/identifying usage trends/determining the effectiveness of promotional campaigns and advertising.
The Legitimate Interests GDPR clause
When analysing our compliance with GDPR legislation Touchstar has opted by the 'Legitimate Interests' clause of the legislation to justify it's data processing activities. “Legitimate Interests” means the interests of our company in conducting and managing our business [to enable us to give you the best service/products and the best and most secure experience]. For example, we have an interest in making sure our marketing is relevant for you, so we may process your information to send you marketing that is tailored to your interests.
It can also apply to processing that is in your interests as well. For example, we may process your information to protect you against fraud when transacting on our website, and to ensure our websites and systems are secure. When we process your personal information for our legitimate interests, we make sure to consider and balance any potential impact on you (both positive and negative), and your rights under data protection laws. Our legitimate business interests do not automatically override your interests - we will not use your Personal Data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
The processing of your data is subject to the following activity. Data is acquired via listing building, list purchase, the completion of web contact forms or the completion of exhibition enquiry cards. Touchstar marketing communication activity is focused on broadcast email campaigns. For email broadcast purposes our email address will be added to our third party cloud-based delivery system (SendInBlue). All other contact data (name, address, telephone number etc.) is not recorded or retained within this system and is removed from other computer storage facilities (e.g. laptops or desktops). The SendInBlue system is used exclusively to provide individuals with information relating to industry best practice, industry technological developments, company product developments and enhancements, core sales messages. Your data is not subject to any form of additional processing and is not shared with any third party. The SendInBlue servers are located within France and the organisation is itself bound by GDPR regulations relating to data processing and security. Further information on SendInBlue's compliance can be found at www.sendinblue.com
You have the right to object to this processing if you wish and if you wish to do so please contact us at firstname.lastname@example.org