Localz believe that transparency is the key to any relationship. At Localz we are all about the Individual Economy, trust and transparency. We appreciate that you are trusting us with information that is important to you and we want to be transparent about how we use it.
Here we describe the privacy practices for our devices, applications, software, websites, APIs, products, and services (the “Services”). You will learn about the data we collect, how we use it, the controls we give you over your information and the measures we take to keep it safe.
1. Information we collect
The information we collect falls into 2 categories: “Customer Product Data” and “Marketing Data”.
Customer Product Data means all information, data, content or other materials inputted into or processed using the Localz SaaS platform (Product), allowing Localz customers to access and use its Product. This data will always be governed and controlled by a Master Service Agreement (Agreement), signed by the parties for an agreed term. Under such Agreements, the parties acknowledge and agree that Localz may access, receive, generate, store and/or otherwise process personal data relating to its Product to provide the services to its customer, and/or otherwise fulfil its obligations in accordance with the Agreement.
Where, under such Agreements, Localz is required to process personal data including names, addresses, other contact information, it will do so as the “data processor” with the customer as the “data controller”, in full compliance with the applicable Data Protection Legislation.
Marketing Data is primarily data needed for outbound category communication. The personal information we collect about you comes from GDPR compliant sources or information that is available publicly online. This may include your name, telephone number and email address.
2. How information is used and shared
As a general principle, we will share your information with the following:
Customer Product Data: Localz acknowledges and agrees that it has rights and obligations under applicable Data Protection Legislation. In processing any personal data with its customers for the provision of its SaaS Product, Localz will process the data only to the extent, and in such a manner, as is necessary for the purposes of the customer Agreement and in accordance with customer’s lawful written instructions. Localz shall not process, nor permit the processing, of the data for any other purpose. If Localz is unsure as to the parameters of the instructions issued by customer and/or believes that customer’s instructions may conflict with the requirements of Data Protection Legislation, Localz may notify customer for clarification.
Marketing Data: We will process your personal information when it is in our legitimate interest to do so and when these interests are not overridden by your data protection rights. As applicable, we will use information about you for keeping you informed on developments in Iconomy fulfilment; how this may relate to you and your organisation and how Localz is evolving to match these developments. This may involve explaining how we are delivering our current solution to our customers, how we are improving existing products and developing new ones. We may use third parties to assist us with this.
3. Your rights to access and control your data
Customer Product Data: Your rights to access and control your data will be defined and agreed within the relevant Agreement. Localz will implement the appropriate processes and systems to ensure compliance with these rights. Furthermore, we will provide our customers with reasonable co-operation and assistance in carrying out privacy impact assessments or otherwise to demonstrate compliance with Data Protection Legislation. On notification of a potential or actual data security breach, Localz would provide the reasonable and appropriate co-operation and assistance necessary to fully investigate such a breach.
Marketing Data: You have the following rights over the way we process personal data relating to you. We aim to comply without undue delay:
4. Data retention
Customer Product Data: Localz will hold personal data to the extent needed to deliver its Product under the customer Agreement. On the customer’s request, Localz will return or destroy all personal data it has in its possession and delete existing copies unless applicable law requires storage of the personal data.
Marketing Data: We will cease use of your data for marketing purposes where we have not communicated with you for more than 2 years.
5. Information security
Customer Product Data: Information security is of the utmost importance and at the heart of the Localz values. At Localz, we take all reasonable and appropriate technical and organisational measures to prevent unauthorised or unlawful processing of data, and accidental loss or destruction of data, taking accounting of the harm that might result from such unauthorised or unlawful processing or accidental loss, or destruction of the data, and the nature of the data to be protected.
We take all reasonable steps to ensure the reliability of all our personnel who have access to the data. We ensure that any person authorised to process data in connection with the customer Agreement is subject to our duty of confidentiality.
Marketing Data: We will apply the same principles to Marketing Data as we do for Customer Product Data, to ensure we keep your personal data safe and secure from unauthorised access to or unauthorised alterations, disclosure or destruction.
6. Our international questions and data transfer
Customer Product Data: Localz will not transfer personal data pursuant to any customer Agreement to a territory outside of the European Economic Area (“EEA”) without customer’s consent or instruction. To the extent that Localz is required to transfer personal data pursuant to any customer Agreement to a territory outside of the EEA that does not have a finding of adequacy by the European Commission, the parties to the Agreement shall execute the standard contractual clauses set out in Commission Decision of 5 February 2010 on standard contractual clauses for the transfer of personal data to processors established in third countries under Directive 95/46/EC (“Model Clauses”) unless the parties agree another more appropriate lawful data transfer mechanism exists.
Marketing Data: Generally, the personal information we use for marketing data is stored and kept inside the European Economic Area, without a need to transfer your data for marketing purposes outside of the EEA.
7. Who we are and how to contact us