Vendtrade Vending Machine Privacy Policy:
Overview
Thank you for expressing interest in Vendtrade. Data protection is of the utmost importance to the Vendtrade management, who wants to ensure a smooth online experience for its customers and web visitors.
While the use of the pages on the Vendtrade website may not be indicative of any personal data processing, in some cases, processing of personal data may become necessary; e.g. when a data subject (you, the registered user or web visitor) wants to use special enterprise services via the website.
In instances where processing of personal data is necessary and there is no statutory basis for such processing, we obtain the data subject’s consent.
This processing of personal data may include the data subject’s name, address, email address, or telephone number, and shall always be in line with the latest General Data Protection Regulation (GDPR) policy and in accordance with the country or region-specific data protection regulations from where the data subject accesses the Vendtrade website.
Through this Privacy Policy, we would like to inform the general public of the scope, nature, and purpose of the personal data which is collected, used, and processed. Furthermore, this Privacy Policy also informs data subjects of the rights they are entitled to.
Being the sole ‘Controller’ of such data, Vendtrade has implemented various technical and organisational measures to ensure the complete protection of any personal data which is collected, used, and processed through this website. However, absolute protection of this data cannot be guaranteed as internet-based transmissions may have security gaps, given the inherent nature of the World Wide Web, otherwise known as the “internet”, which has certain limitations.
We do offer data subjects the option to transfer personal data via an alternative channel, such as by telephone.
Please take a moment to read through our vending machine data policy to better understand what kind of data is collected, how it is used and processed, and your rights as a data subject. We recommend bookmarking this page and checking it from time to time, to ensure that you are reading the latest copy of our vending machine data privacy policy.
Section 1 – Definitions
This Privacy Policy is based on the terms used by the European legislator for the adoption and enforcement of GDPR. Our Privacy Policy specifically is meant for the general public as well as our customers and business partners, explained in plain, easy-to-understand terms. For this purpose, we would like to familiarise you with the terminology in this Policy:
A. Personal Data
B. Data Subject
C. Processing
D. Restriction of Processing
E. Profiling
F. Pseudonymisation
G. Controller/Controller responsible for the processing
H. Processor
I. Recipient
J. Third Party
K. Consent
Section 2 – Name and Address of the Controller
The ‘Controller’ appointed for the purposes of GDPR, and other data protection laws applicable in Member States of the EU and other provisions related to data protection, is:
Vendtrade, Unit 9 Spitfire Business Park, 1 – Hawker Road Croydon CR0 4WD UK
Phone: 0845 689 0096
Email: sales@vendtrade.co.uk
Website: https://www.vendtrade.co.uk
Section 3 – Cookies
The Vendtrade website uses cookies – small text files stored on the device’s browser which is used by the data subject or natural person to access the website’s pages.
Most internet sites use cookies to improve the user experience, with unique cookie IDs being assigned to each device and browser combination used to access the website’s pages.
While you can always decline cookies, we highly recommend accepting them as it allows us to provide an optimal and user-friendly experience each time you visit our website.
Cookies are very important to us. They allow us to recognise every individual website user and the purpose of this recognition is to improve their website browsing experience.
Cookies do not contain any personally identifiable
information that can be used to link back to you or identify you as a data subject or legal person. To give you a small example: when you accept cookies, you do not need to enter any website access data as such each time you access the Vendtrade website, because the cookie has already been stored on your device’s browser, which means you can access everything on the website quickly and seamlessly.
Another example is the cookie which is placed on your device’s browser when you enter information in an online shopping cart. The online stores remembers the items you purchased via the cookie and improves your experience the next time you visit the online store.
You can always choose to block cookies by changing the settings in your browser; however, this means that not all features of our website will function as intended and may degrade your Vendtrade website browsing experience, as a result.
Section 4 – Collection of General Data and Information
The Vendtrade website collects a series of general data and information when a data subject/legal person or automated system accesses it.
The general data and information are stored in our server log files and the data and information collected may include:
a. The browser types and versions used
b. The operating system used by the data subject’s system or automatic system to access the site
c. The website from which another system reaches or accesses our website (referrers)
d. The sub-websites
e. The data and time of access to our site
f. The internet protocol (IP) address
g. The internet service provider (ISP) of the system accessing our site
h. Any other similar data or information which may be used to attack or hack our information technology systems
When using the above different kinds of data and information, Vendtrade does not draw any conclusions about the data subject or natural person, based on such data and information. Instead, this information is used to:
a. Deliver our website content optimally and as intended
b. Optimise our website’s content and advertisement
c. Ensure the long-term viability of our information technology systems and website technology
d. Provide law enforcement authorities and/or agencies with any information needed for criminal prosecution in the event of a cyber-attack.
Vendtrade analyses anonymously collected data and information statistically, as to increase data protection and data security within our enterprise, and also to ensure optimal protection for the personal data we process.
The anonymous data pertaining to the server log files are stored separately from the personal data provided by a data subject or natural person.
Section 5 – Registration on the Website
The data subject may register on the website of the Controller (Vendtrade), providing the necessary personal data.
What kind of personal data is transmitted to the Controller is determined by the respective input mask used for the registration.
Any personal data entered by the data subject is collected and stored for internal use by the Controller only, or for purposes set out solely by the Controller.
The Controller may request transfer to one or more Data Processors (such as a parcel service) who also use personal data for an internal purpose attributable to the Controller.
When a data subject registers on the Controller’s website, the IP address assigned to the data subject by their ISP, along with the data and time of registration, are stored on our internal systems.
The storage of this data takes place in the background as data subjects register on the website and start browsing or requesting services. This is done deliberately to prevent misuse of our services and, if required, to make it possible for us to investigate any committed offenses, should that be the case.
This data is never passed on to any third parties unless a statutory obligation requires us to do so, or for the purpose of criminal prosecution.
The data subject’s registration, along with their voluntary consent to process their personal data, is intended to enable our Controller to offer the data subject specific contents and/or services which can only be offered to registered data subjects or natural persons.
Registered data subjects are free to change their personal data which they specified during the registration period and they can do so at any point in time. In addition, they can also have their personal data completely deleted from the controller’s data stock, if they so choose.
On request, the Data Controller shall provide the data subject with information on the personal data the latter wishes to have stored. Additionally, the Data Controller can correct or erase personal data of the data subject upon request or indication, as far as there are no statutory storage obligations. A
Data Protection Officer (DPO) as part of this data protection declaration, as well as the Controller’s entire team are available to the data subject as ‘contact persons’, in case the latter wishes to edit, update, or remove specific aspects of their personal information.
Section 6 – Subscription to our Newsletters
Website users may, from time to time, be given the opportunity to subscribe to Vendtrade’s newsletter. The input mask used in this case determines the personal data that’s transferred, and also when the newsletter is ordered from the Controller.
By means of a company newsletter, Vendtrade regularly informs its customers and business partners about enterprise offers that may benefit them. However, this newsletter may only be received by the data subject if:
- The data subject has provided a valid email address
- The data subject has registered for the physical mailing or electronic dispatching of the newsletter
During the newsletter subscription/registration process, we store the IP address of the computer system the data subject uses to subscribe or register, including the date and time of this action. The collection of such data is deemed necessary by Vendtrade in order to rule out the possibility of the misuse of the data subject’s email address at a later date and time, and also offers legal protection to the Controller.
The personal data collected during this process on the data subject is only used for the purpose of sending the newsletter. Additionally, subscribers may be informed via email, as long as required for the dispatching of newsletters, wherein any modifications to the newsletter offer or any changes in technical circumstances, will be informed to the subscriber/data subject via the same.
No transfer of personal data collected for the purpose of newsletter registering and dispatching shall take place between us and third parties.
The newsletter subscription may be terminated at any time by the data subject. The consent given by the data subject to store personal data may be revoked at any time. For revocation of consent, a corresponding link can be found in each newsletter.
Data subjects may unsubscribe from the newsletter at any time via the “unsubscribe” link in the newsletter or by contacting the Controller via the Vendtrade website.
Section 7 – Newsletter Tracking
Each one of Vendtrade’s newsletters contains tracking pixels: miniature graphic information embedded within the newsletter email sent in HTML format to enable log file recording and analysis. This allows us to perform statistical analysis on the success (or failure) of our online campaigns. Based on the embedded tracking pixel, we can see, for example, when a data subject opened the email, which links were called upon, and so on.
Any personal data collected via the tracking pixels in the newsletter email are stored and analysed solely by the controller to optimise the electronic dispatch of the newsletter, and also to adapt the content of future newsletters according to the individual needs of the data subject. Such personal data is never passed on to any third parties.
Data subjects can, at any point, revoke the declaration of consent issued via the ‘double opt in’ procedure. After a revocation request, the data subject’s personal information shall be deleted permanently by the Controller. Vendtrade automatically regards a withdrawal or unsubscribe request from a newsletter as a revocation.
Section 8 – Communication with Vendtrade via the Website
The Vendtrade website contains information which allows data subjects to electronically contact us and communicate directly with us, which includes contacting us via an email address.
When a data subject contacts us via email or Contact Form, the personal data they transmit during such communication is automatically stored on our severs. Such personal data is transmitted on a voluntary basis by the data subject to the Data Controller, which the latter stores for processing the supplied information as/when needed or for contacting the former.
Under no circumstances is this information transferred to third parties.
Section 9 – “Comments” function on the website’s Blog
The Vendtrade website allows data subjects to leave comments on individual blog posts under the Blog section of the website. Each time a data subject leaves a comment under one of the blog posts, their comments are published on the website and stored on our internal systems. In addition, the data subject’s IP address is also logged.
The IP address of the data subject is stored for security reasons, and also in case the data subject violates the rights of third parties (as third parties may post from time to time in the comments section) or posts illegal/prohibited content along with a comment.
The storage of such personal information is in the Data Controller’s best interest, so that he/she can take the appropriate action, including exculpation, should an infringement occur. This collected data shall not be passed on to third parties, unless required by law or for the purpose of the defense of the Data Controller in cases involving infringement or a policy violation by the data subject.
Section 10 – Erasure and Blocking of Personal Data routinely
The Data Controller shall process and store a data subject’s personal data only for the period needed to achieve the purpose of such storage, or as to the extent granted by the European legislator or other legislators in laws/regulations the Controller is subject to.
If the storage purpose is no longer applicable, or if the storage period as prescribed by the European legislator or any other competent legislator expires, the data subject’s personal data is routinely blocked or erased in-line with legal requirements.
Section 11 – Your Rights as a Data Subject
A. Right to Rectification
As per the right granted by the European legislator, a data subject may obtain rectification of inaccurate personal data without undue delay. Keeping in view the purpose of such processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement.
To exercise the right to rectification, a data subject may contact our DPO or any other employee designated as a ‘contact person’ by the Controller.
B. Right of Confirmation
As a data subject, you have the right granted by the European legislator to obtain confirmation from the Controller on whether your personal data is being processed.
If you wish to avail this right at any time, you may contact our Data Protection Officer (DPO) or any other employee designated by the Controller as a ‘contact person’.
C. Right of Access
As a data subject, you have the right to obtain information about your personal data from the Controller, by requesting a copy of this information at any time.
Furthermore, as per the directives and regulations of the European legislator, you have the right to access the following information:
- The purpose of processing your personal information
- The categories of personal data stored on you
- The recipients to whom categories of your personal data have been disclosed to or will be in future, including particularly recipients in foreign countries or international organisations and/or entities
- The average period or duration for which your personal data will be stored, or the criteria for determining the period/duration for such storage
- The right to request the Controller to rectify or erase your personal data, or restriction of such processing of data, or to object to such processing of data
- The right to lodge a complaint with a supervisory authority in case your data access rights are not honoured
- Any personal data on you not collected directly through you, and any available information in regards to the source of such data
- The existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) of the GDPR and, in those cases, meaningful information about the logic involved, as well as the significance and envisaged consequences of such processing of your personal information.
In addition to the above rights, you also have the right to obtain information about whether your personal data is being transferred to a foreign country or international organisation or entity. If this happens to be the case, then you have the right to be informed about the necessary safeguards put in place related to such a transfer.
If you wish to avail any of the above Rights of Access, you may contact our DPO or any other employee designated as a ‘contact person’ by the Controller.
D. Right to Erasure
Also referred to as the ‘Right to be Forgotten’, the data subject may obtain from the Controller the erasure of personal data without undue delay.
Additionally, the Controller is under obligation to erase such personal data without delay but only under one of the following conditions, and as long as processing of such data is no longer required by Vendtrade:
- The personal data is no longer required for the purposes it was originally collected or processed.
- The data subject wishes to withdraw consent to which processing is done according to point (a) of Article 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
- The data subject objects to the process as per Article 21(1) of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in accordance with Article 21(2) of the GDPR.
- The personal data has been processed unlawfully or without the data subject’s consent.
- The personal data must be erased in compliance with a legal obligation through Union or Member State law to which the Controller is bound to.
- The personal data has been collected in relation to the offer of information society services referred to in Article 8(1) of the GDPR.
If any of the above conditions apply and a data subject wishes to exercise the right to erase personal data stored by Vendtrade, he/she may contact our DPO or any other employee designated as a ‘contact person’ by the Controller. Furthermore, the DPO or any other employee designated as a ‘contact person’ by the Controller shall promptly comply with the data subject’s request and erase the required data without delay.
Where the Controller has made the data subject’s personal data public and is obliged under Article 17(1) to erase the personal data, the Controller shall, while taking into account the available technology and the cost of implementation, take reasonable steps, including technical measures, to inform other Controllers processing the personal data – that the data subject has requested erasure from such Controllers of any links to, or copy or replication of such personal data, as long as processing is not required.
Vendtrade’s DPO or any other employee designated as a ‘contact person’ by the Controller shall arrange the necessary measures in individual cases.
E. Right to Restriction of Processing
Each data subject, as per the right granted by the European legislator, may obtain restriction of processing from the Controller under any one of the following conditions:
- The data subject believes the personal data is not accurate and allows the Controller a reasonable amount of time to verify the accuracy of such personal data.
- The processing of the personal data has been deemed unlawful by the data subject and he/she requests restriction of such data rather than erasure.
- The Controller no longer requires the personal data for processing purposes, but the data is still required by the data subject to establish, exercise or defend themselves in legal claims.
- The data subject objects to the processing of their data under Article 21(1) of the GDPR pending verification on whether the legitimate grounds of the Controller override those of the data subject.
If any of the above conditions are met and a data subject wishes to request restriction of processing in regards to their personal data, he/she may contact our DPO or any other employee designated as a ‘contact person’ by the Controller.
F. Right to Data Portability
Each data subject, as per the right granted by the European legislator, may receive their personal data by the Controller on a commonly used and machine readable format, such as a USB device.
The data subject has the right to transmit that data to another Controller without hindrance from Vendtrade’s Controller to which the data was originally provided, as long as the processing is based on consent pursuant to (a) of Article 6(1) of the GDPR or point (a) of Article 9(2) of the GDPR, or on a contract pursuant to point (b) of Article 6(1) of the GDPR, and; the processing is carried out via automated means, provided the processing is not required for performing a task(s) carried out in public interest or to exercise official authority granted to the Controller.
Additionally, in exercising his/her right to data portability pursuant to Article 20(1) of the GDPR, the data subject has the right to have their personal data transmitted directly from Vendtrade’s Controller to another Controller, where/if technically feasible and, in doing so, does not breach the rights and freedoms of others.
To exercise the right to data portability, the data subject may contact our DPO or any other employee designated as a ‘contact person’ by the Controller.
G. Right to Object
As per the right granted by the European legislator, each data subject has the right to object to the processing of their personal data, on grounds related to his/her specific situation, as per point (e) or (f) of Article 6(1) of the GDPR. This right to object also applies to profiling based on the provisions under Article 6(1).
When a data subject exercises the right to object, Vendtrade shall no longer process the personal data, unless it can demonstrate legitimate grounds for processing which override or overrule the interests, rights, and freedoms of the data subject or for the exercise, establishment, and/or defence of legal claims.
If Vendtrade processes the personal data for direct marketing purposes without consent, the data subject has the right to object at any time.
This applies to profiling of the data subject for the said direct marketing purposes. In the event that a data subject objects to such processing for direct marketing purposes, Vendtrade shall seize processing of personally data immediately without delay.
Additionally, the data subject, on grounds related to his/her specific circumstances, has the right to object to processing of personal data done by Vendtrade for scientific or historical research purposes, or statistical purposes as per Article 89(1) of the GDPR, unless such processing is deemed necessary for the performance or execution of a task carried out in public interest.
To exercise the right to object, the data subject may contact our DPO or any other employee designated as a ‘contact person’ by the Controller. Additionally, the data subject is free to use Information Society Services (not withstanding Directive 2002/58/EC) in order to exercise his/her right to object by automated means using the necessary technical specifications.
H. Right to not be subject to Automated Individual Decision-Based Processing
Each data subject has the right, as granted by the European legislator, to not be subject to decision-based automated processing, including profiling, where legal effects are produced as a result of processing his/her data, or where the automated processing of such data significantly affects him/her.
This right may be exercised as long as the automated processing decision is:
- Not required for entering into or for the performance of a contract between the data subject and Controller.
- Not authorised by the Union or Member State law to which the Controller is subject to, and which has also laid down suitable measures to safeguard the data subject’s rights and legitimate interests.
- Not based on the data subject’s explicit consent.
However, if the automated decision is necessary for:
- Entering into or the performance of a contract between the data subject and Vendtrade’s Data Controller;
- Or it is based on the data subject’s explicit consent.
I. Right to withdraw Data Protection Consent
Each data subject shall, as per the right granted by the European legislator, the right to withdraw his/her consent to processing of their personal data at any time.
To exercise this right, the data subject may contact our DPO or any other employee designated as a ‘contact person’ by the Controller.
Section 12 – Data Protection Provisions about the Application and Use of Facebook
On the Vendtrade website, the Controller has integrated components of the social network, Facebook.
A social network is a place for social meetings on the Internet, an online community, which usually allows users to communicate with each other and interact in a virtual space.
A social network may serve as a platform for the exchange of opinions and experiences, or enable the Internet community to provide personal or business-related information.
The operating company of Facebook is: Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States, with the Controller based in the same location. Outside of the United States or Canada, the Controller is based on: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Following each call-up to one of the individual pages of the Vendtrade website, which is operated by the Controller, and into which a Facebook ‘plug-in’ or ‘component’ has been integrated, the web browser used by the data subject’s information technology system is automatically prompted to display which corresponding Facebook components or plug-ins are being downloaded.
Data subjects may access an overview of all Facebook Plug-ins on this link:
Throughout this technical procedure, Facebook is made aware of which part, section or page of our website was visited by the data subject.
If a data subject is logged into their Facebook account while accessing the Vendtrade website, Facebook automatically detects each call-up made to our website by that data subject, including the entire duration of their stay on the website, as well as the specific sub-site, page or section of our website visited by the data subject. All this information is collected via the appropriate Facebook component and automatically associated or linked with the respective Facebook account of the data subject.
Each time a data subject clicks on one of the Facebook buttons integrated on the Vendtrade website – such as the “Like” button or when submitting a comment – Facebook matches the information with the data subject’s Facebook account and stores the corresponding personal data.
Facebook receives, through the integrated Facebook component on our website, information on when a data subject visits the Vendtrade website, if the data subject is logged into their Facebook account when accessing our website either directly or otherwise, such as a link.
This action occurs regardless of whether the data subject clicks on any of the integrated Facebook components on our website. If such a transmission of information to Facebook is deemed undesirable or unwanted by the data subject, then he/she may prevent it by logging off or signing out of their Facebook account before a call-up (access) to our website is made.
Facebook has published their own data protection guidelines which data subjects are free to access, providing information about how personal data is collected, processed, and used by the social media network. Additionally, the guidelines explain what settings or options
Facebook offers to protect a data subject’s privacy. Also found in the guidelines are the various configuration options available to data subjects to allow prevention of such data transmissions to Facebook
Section 13 – Data Protection Provisions about the Application & Use of Google Analytics
Vendtrade’s Controller has integrated Google Analytics on the website (with the anonymiser function).
Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data to monitor the behavior of visitors on websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimisation of a website and in order to carry out a cost-benefit analysis of internet advertising.
The operator of the Google Analytics component on our website is: Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
For the purpose of website analytics through Google Analytics, our Controller uses the “_gat. _anonymiseIp” application. Through the use of this application, the IP address of the data subject’s internet connection is abridged or truncated by Google and anonymised when accessing the Vendtrade website from a Member State of the EU or another Contracting State to the Agreement on the European Economic Area.
The purpose of integrating Google Analytics with our website is to analyse the flow of traffic. Google uses the collected personal data and information, among other things, to evaluate the use of our website and to provide us with online reports, including activities on our websites such as page visits and page stay duration – which, in turn, help us to improve our services and/or provide additional services to the end user.
Google Analytics places a cookie on the information technology system being used by the data subject. You may read more about cookies under ‘Section 3’ of this Privacy Policy. Through the unique cookie setting, Google analyses the use of our website. With every call-up to our website, the data subject’s internet browser automatically submits specific data through Google Analytics for the purpose of Vendtrade’s online advertising and for settling commissions with Google for services rendered.
During the course of this technical procedure, Google acquires personal information on the data subject, such as their unique IP address, allowing them to understand the origin of visitors and their ‘clicks’, and to subsequently create commission settlements with Vendtrade.
The cookie stored on the data subject’s web browser as a result of using the Vendtrade website, contains non-identifiable personal information, including the access time of any given page, the location from which the access was made, and the frequency of website page visits made by the data subject.
When data subjects visit our website each time, such personal data, including the IP address used to access the website, is transmitted to Google, US, where it is stored. Google, US, may pass on the collected personal data through the technical procedure on our website to third parties as/when needed or required.
Data subjects may prevent the setting of cookies on their device through our website at any time by adjusting their web browser settings to permanently deny cookies. By setting the browser to permanently deny cookies, Google Analytics would also be unable to acquire any information on the data subject.
Furthermore, cookies already being used by Google Analytics before the cookie settings were ‘denied’ on the data subject’s browser can be deleted at any time by the same, either directly from their web browser or through other software programmes.
Data subjects may also object to the collection of data acquired and generated by Google Analytics regarding their use of the Vendtrade website, as well as the processing of such data by Google, as well as the chance to preclude any such data.
For the above purpose, the data subject is required to download a browser add-on using this link and install it. This browser add-on tells Google Analytics (through JavaScript) that any data and/or information about internet page visits may not be transmitted to Google for the purpose of analytics. The installation of this browser add-on is considered an ‘objection’ by Google. If the web browser on the data subject’s device is later deleted, formatted, or newly installed, then he/she must reinstall the browser add-on in order to prevent Google Analytics from transmitting data to Google. If the data subject uninstalls or disables the browser add-on, it is possible to reinstall or reactive the add-on.
Further Information in regards to the above and the relevant data protection provisions undertaken by Google may be found on here and this.
To learn more about Google Analytics, visit this link.
Section 14 – Data Protection Provisions about the Application & Use of Google+
Vendtrade’s Controller has integrated the “Google+” button on the website as a button.
Google+ is a social network, similar to Facebook and Twitter.
The operating company of Google+ is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
Each time any of the individual pages integrated with the Google+ button is called up, the data subject’s internet browser will automatically download information in order to display this button on their device’s browser. During the course of this technical procedure,
Google is informed of the specific page or sub-page that a data subject visits on the Vendtrade website. More information about Google+ can be found here.
While accessing any of the website’s pages or sub-pages, if the data subject is logged in to their Google+ account, Google will automatically recognise and log information on the pages visited, the stay duration on each page and on the website in general. This information is collected through the Google+ button and is matched with the corresponding Google+ account of the data subject.
Whenever a data subject clicks on the Google+ button and provides a “Google+ 1 recommendation”, Google assigns this information to the specific Google+ account of the data subject and stores their personal information as well.
This information may be made publicly available in accordance with the terms and conditions the data subject accepted at the time of creating their Google+ account. Subsequently, Google+ 1 recommendations given by the data subject along with their profile photo are stored and processed on other Google services, such as search results on Google’s SERPs (search engine results pages), the Google account of the data subject, and other places, such as internet pages related to advertisements
Additionally, Google may also link the data subject’s visits to the Vendtrade website with other personal data stored on their servers. Google may further record the personal information for the sole purpose of improving or optimising their service suite.
Through the Google+ button integrated on our website, Google receives information on page visits by the data subject, including the time of call-up to any specific page as well as the page stay duration, as long as he/she is logged in to their Google+ account. This action occurs regardless of whether the data subject clicks or doesn’t click on the Google+ button.
