TA Digital realizes that GDPR is a shared compliance journey, with the regulation setting out the obligations for the various parties. The descriptions below set out the roles for brands or “data controllers,” technology providers or “data processors,” and the places where the processor may need to help or partner with the controller either through tools, processes, or documentation to help the controller.
CUSTOMERS’ RIGHTS AS DATA SUBJECTS
Allowing individuals to choose what happens to their personal data is key part of GDPR. Individuals can ask companies to:
- Delete personal data
- Object to its processing
- Export it
- Access and correct errors
THE ROLE OF A DATA CONTROLLER
If you are a data controller, it is your responsibility to determine the personal data we process and store on your behalf. Please note that TA Digital may process personal data for you depending on the products and solutions you use and the information you choose to send to your TA Digital account or service. As a controller, you will provide privacy notices to individuals who engage with your brands detailing how you collect and use information, and obtain consents, if needed. If those individuals want to know what data you maintain about them or decide they want to discontinue their relationship with you, you will respond to those requests.
THE ROLE OF A DATA PROCESSOR
When we provide software and services to an enterprise, we’re acting as a data processor for the personal data you ask us to process and store as part of providing the services to you. As a data processor, we only process personal data in accordance with your company’s permission and instructions — for example, as set out in your agreement with us. Where your data is in one of TA Digital’s cloud solutions and you need our assistance with any individual consumer requests, we will partner with you through processes, products, services, and tools to help you respond.