Effective Date: 19/11/2018
Getform is committed to ensuring that your privacy is protected. Getform considers data protection and privacy to be of paramount importance. We never sell personal data and we carry out all processing operations in strict compliance with the EU General Data Protection Regulation (“GDPR”). Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.
We value your trust. In order to honor that trust, Getform adheres to ethical standards in gathering, using, and safeguarding any information you provide. Getform is used by Getform “Users” and by Getform “Respondents”. The information we receive from Users and Respondents and how we handle it differs, as set out below.
As a User, we collect information relating to you and your use of our Services from a variety of sources:
Information we collect directly from the User
Information we collect about the User indirectly or passively when interacting with us
As a Respondent, when you respond to Getform forms hosted by Getform, we collect, on behalf and upon instructions of Getform’s Users, information relating to you and your use of our services from a variety of sources:
Information we collect directly from the Respondent: Getform responses
When responding to a Getform form you may provide personal information or data. Please note that Getform is not responsible for the content of that Getform form, so if you have any questions about a Getform form you are taking, please contact the Getform User directly.Information we collect about the Respondent from other sources on behalf of Getform’s Users
When Getform is processing Respondents’ Data on behalf of Users, the User who creates the Getform form is the Data Controller in relation to the data of Respondents using such Getform form, and Getform is the Data Processor of such Respondents data (hereinafter, User shall be referred to as the “Data Controller” and Getform as the “Data Processor). For the processing of Respondents’ data on behalf of the Data Controller, the Data Processor undertakes to fulfill the following obligations:
For the processing of Respondents’ data on behalf of the Data Controller, the Data Processor undertakes to fulfill the following obligations:
However, the Data Controller may authorize, expressly and in writing, the Data Processor to use another data processor (hereinafter, the “Subcontractor”), whose identification data (full company name and fiscal identification number) and subcontracted services must be communicated to the Data Controller, prior to the provision of the service, at least with one (1) month in advance. The Data Processor will also inform the Data Controller of any change envisaged in the incorporation or substitution of the Subcontractors, giving thus to the Data Controller the opportunity to object such changes.
In case of making use of the power recognized in the previous paragraph, the Data Processor is obliged to transfer and communicate to the Subcontractor the whole obligations that for the Data Processor derive from this Agreement and, in particular, the provision of enough guarantees that he will apply appropriate technical and organizational measures, so that the processing complies with the applicable regulations.
In any case, access to the data made by natural persons who render their services to the Data Processor, acting within the organizational framework of the latter by virtue of a commercial and non-labor relationship, is authorized. In addition, access to the data is granted to companies and professionals that the Data Processor has hired in their internal organizational framework in order to provide general or maintenance services (computer services, consulting, audits, etc.), as long as such tasks have not been arranged by the Data Processor with the purpose of subcontracting with a third-party all or part of the Services provided to the Data Controller.
If the Data Processor or any of his Subcontractors violates this Agreement or any regulation when determining the purposes and means of the processing, they shall be held responsible for such processing. Furthermore, if such Subcontractors are based in countries which do not have a legislation on data protection which is equivalent to the EU legislation (“Third Countries”), Data Processor shall establish all safeguards required by the EU legislation in order to comply with all obligations arising from transfers of data to Third Countries, and shall promptly inform Data Controller about such safeguards if so requested.
We store your personal information only on servers with limited access that are located in controlled facilities, and use a variety of technologies and procedures intended to protect your personal information from loss, misuse, unauthorized access, disclosure, alteration and destruction. To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
Nonetheless, no communication via the Internet can ever be 100% secure, and no security measures can ever be assured to be effective. Accordingly, you are advised to use caution and discretion when determining what personal information to disclose to us. If you have any questions about security on our Site, contact us as set below.
As part of these terms you are prohibited from allowing any form of illegal data to enter our systems and we, Getform Ltd (Getform), will act only as a data processor for this data. The fundamental rights for the data subjects are your responsibility as the data controller, these include but are not limited to;
In order to make things easier for you, and without prejudice to the legal requirements Getform must comply with under the laws, Getform allows you to exercise the above-mentioned rights by opening a support ticket via the Help Center or contact us on firstname.lastname@example.org
A cookie is a small string of information that the website you visit transfers to your computer for identification purposes. Cookies can be used to follow your activity throughout the Getform Services and that information helps us to understand your preferences and improve your experience.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
You may cancel your account and you may opt out of receiving any emails from Getform at any time by changing the settings in your account profile page. Deleting your account will cause all the Getform data in the account to be permanently deleted from our systems within a reasonable time period, as permitted by law and will disable your access to any other services that require a Getform account. We will respond to any such request, and any appropriate request to access, correct, update or delete your personal information within the time period specified by law (if applicable) or without excessive delay. We will promptly fulfill requests to delete personal data unless the request is not technically feasible or such data is required to be retained by law (in which case we will block access to such data, if required by law).
You may request details of personal information which we hold about you under the Data Protection Act 1998. If you would like a copy of the information held on you, please reach out to us from our contact info given below.