DSG Inc. Privacy Policy

In addition to the third parties described under each category in the above section, we may share Personal Data with the following categories of third parties to accomplish the purposes set out above and for the additional purposes set forth below.

• To Protect Our Legal Rights or Comply with Legal Requirements. We may disclose Personal Data (1) in response to lawful requests by public authorities, including to meet national security or law enforcement requirements or in response to subpoenas, court orders, or other legal or regulatory process; (2) to establish or exercise our legal rights; (3) to defend against legal claims; or (4) to protect your safety or the safety of others, or (5) to investigate fraud, or (6) as otherwise required by law.
• Sale or Transfer of Corporate Assets. In the event of a merger, sale, joint venture or other transaction involving a transfer of our business or assets, we may transfer your information to other parties involved in the transaction. Any entity acquiring our data assets will do so with the express, written commitment to use the data only for authorized purposes, and to maintain a similar level of privacy and information security protection. You will be notified via email or notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
• With Your Consent. We may disclose your personal information to other third parties with your prior opt-in consent.

Our accountability for personal information that we receive under the DPF Principles and subsequently transferred to a third party is described in the DPF Principles. In the context of an onward transfer, we have responsibility for the processing of personal information we receive under the DPF Principles and subsequently transfer to a third party acting as an agent on our behalf. We remain liable under the principles if a third party that we engage to process personal information on our behalf does so in a manner inconsistent with the DPF Principles, unless we prove that we are not responsible for the event giving rise to the damage.

You may have a right under your jurisdiction’s data protection law to the following rights with respect to some or all of your Personal Data:

• To request access to your Personal Data (including under GDPR Article 15);
• To request that we rectify or erase your Personal Data (including under GDPR Articles 16 and 17);
• To request that we restrict or block the processing of your Personal Data (including under GDPR Articles 18, 21 and 22 and to object to the sale or sharing of your Personal Data under other relevant laws);
• To provide your Personal Data directly to another organization, i.e., a right to data portability (including under GDPR Article 20);
• When we previously obtained your consent, to withdraw consent to processing (including under GDPR Article 21); and
• To lodge a complaint with the data protection authority in your area.

We will make reasonable efforts to respond promptly to your requests in accordance with applicable laws. We may, after receiving your request, require additional information from you to honor the request and verify your identity. Please be aware that we may be unable to afford these rights to you under certain circumstances, such as if we are legally prevented from doing so.

When we receive your Personal Data from our customers and process your Personal Data on their behalf, we do so in the capacity of a data processor. In such cases DSG may need to contact the data controller and follow the data controller’s instructions.

To exercise these rights, please use DSG’s contact page https://www.dsg-us.com/contact-dsg.html, email to dataprivacy@dsg-us.com or contact a DSG HR representative, as the case may be.

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, DSG commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU, UK and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF should first contact us at the email address or at DSG’s contact page as described above. DSG commits to cooperate and comply with the advice of the panel established by the EU data protection authorities (DPAs), and the UK Information Commissioner’s Office (ICO) and the Gibraltar Regulatory Authority (GRA) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.

Under certain conditions EU, UK or Swiss individuals may have the possibility to invoke binding arbitration for complaints regarding Data Privacy Framework compliance (EU-U.S. DPF, and the UK Extension to the EU-U.S. DPF and/or Swiss-U.S. DPF) not resolved by any of the other DPF mechanisms - see the following link for additional information - https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2

We want you to feel confident about using our website and services, and we are committed to protecting the personal information we collect. As part of this commitment, we have achieved ISO/IEC 27001:2013 –Information security management system certification. ISO/IEC 27001:2013 provides a standard for maintaining an information security management system (ISMS) including appropriate administrative, technical, and physical security procedures to help protect the personal information you provide to us. In addition, we use encryption (as applicable) when transmitting your personal information between your system and ours, and we employ firewalls and intrusion detection systems to help prevent unauthorized persons from gaining access to your information.

DSG has internal policies and controls in place to reasonably protect Personal Data against loss, accidental destruction, misuse or disclosure, and to ensure that data is not accessed by unauthorized users. However, as is the case with all websites, applications, products, and services, we unfortunately are not able to guarantee security for data collected through our products and services. In addition, it is your responsibility to safeguard any passwords, PIN codes, or similar individual information associated with your use of our products and services.

Where DSG engages third parties to process Personal Data on its behalf, such parties do so on the basis of written instructions, are under a duty of confidentiality and are obliged to implement appropriate technical and organizational measures to ensure the security of data.

DSG recognizes potential liability in cases where Personal Data may be transferred to third parties. DSG will not transfer any Personal Data to a third party without first ensuring that the third-party adheres to principles or similar laws providing an adequate and equivalent level of protection.

Your Personal Data may be transferred and maintained outside your state, province, country, or other jurisdiction where the privacy laws may not be as protective as those in your location, including the United States. We have put in place lawful transfer mechanisms and adequate safeguards, in accordance with applicable legal requirements, to protect your Personal Data.

We comply with the EU-U.S. DPF Principles, and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF Principles as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union, United Kingdom and/or Switzerland to the United States.

The Federal Trade Commission has jurisdiction over DSG’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).

We generally retain Personal Data for as long as needed for the specific business purpose or purposes for which it was collected. In some cases, we may be required to retain Personal Data for a longer period of time by law or for other necessary business purposes. Whenever possible, we aim to anonymize the information or remove unnecessary identifiers from records that we may need to keep for periods beyond the specified retention period.

When we act as a data processor, the retention period is determined by the data controller.

DSG uses cookies which are small data files that are served by our platform and stored on your device. Our site uses cookies dropped by us or third parties for a variety of purposes including to operate and personalize the website to improve users’ experience and for targeted advertising purposes. Cookies may expire at the end of your browsing session, or they may be stored on your computer ready for the next time you visit the website. You can prevent the setting of cookies by adjusting the settings on your browser (see your browser “Help” section for how to do this). Disabling cookies will affect how you experience our website.

We may collect information about your visits to our website, including the pages you view, the links you click, search terms you enter, and other actions you take in connection with our website and services. We may also collect certain information from the browser you used to come to our website, such as your Internet Protocol (IP) address, browser type (such as Firefox or Chrome) and language, device type, geographic location, access times, the Uniform Resource Locator (URL) of the website that referred you to our website and to which URL you browse away from our site if you click on a link on our site. We use third party (Google Analytics) embedded scripts which are bits of programming code included within our web pages. This information is collected to measure how you view or interact with our web pages. We use this information to send marketing emails.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page https://policies.google.com/privacy.

If you have questions or comments about this Notice or about how your Personal Data is processed, please contact us by using DSG’s contact page https://www.dsg-us.com/contact-dsg.html or email to dataprivacy@dsg-us.com.