The Users is hereby counseled to carefully scrutinize this document.
User(s) hereby agree that with the entry of the following information on the Website i.e. the entry of their respective e-mail address, name and surname, phone number, address etc. they (the User(s)) freely give their consent to Brainster for the processing of personal data relating to said User.
User(s) explicitly consent to the collection and use of personal data for the specific reason of providing the services of Brainster i.e. the successful rendering of non-formal educational services in the fields of Data Science & UX/UI Design.
User(s) also freely give their consent for the processing of their physical identity via video in instances where they are selected and admitted in to the respective Bootcamp for the purposes of the fulfillment of the online curriculum. In such cases, classes will be held via a video chat service chosen by Brainster that offers the adequate level of security & protection.
Notice: User(s) are hereby informed that their personal information on the Website will be gathered via a form with appropriate fields for name & surname, phone number, address, email etc. In such instances User’s personal data will be gathered in events where the User(s) applies either to the Data Science or UX/UI Design Bootcamp, wishes to secure further information regarding the aforementioned Bootcamps and/or wishes to be further contacted by Brainster.
Personal data and other information shall be used by Brainster for this reason and this reason only.
In the event of a Personal data breach, Brainster i.e. the controller shall without undue delay, and where feasible, no later than 72 hours after becoming aware of the Personal data breach, notify said breach to the supervisory authority, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of the User. Should the notification to the supervisory authority not be made within 72 hours, it shall be accompanied by reason for the delay.
Should the Personal data breach be likely to result in a high risk to the rights and freedoms of the data subject, the controller i.e. Brainster shall communicate the Personal data breach to the subject without undue delay. The aforementioned communication to the data subject shall describe, in a clear and plain language, the nature of the Personal data breach and shall consist of the following:
The name and contact details of the Data Protection Officer or other contact point where more information can be obtained;
The likely consequences of the Personal data breach;
The measures undertaken or proposed to be taken by Brainster to address the personal data breach, including, where appropriate, measures to mitigate its possible adverse effect;
User(s) acknowledge that should events arise pursuant to Article 24 Section (3) of the General Data Protection Regulation they may not be informed of the Personal data breach as defined in the previous paragraph.
User(s) have the right to obtain from Brainster confirmation as to whether or not Personal data concerning the User is being processed, the purposes of processing, the categories of personal data concerned, the recipients or categories of recipients to whom personal data have been or will be disclosed, he envisaged period for which the personal data will be stored or if not possible the criteria used to determine that period, the existence of the right of rectification or erasure of personal data, the right to lodge a complaint to a supervisory body, source of the data if said data is not collected from the User and the existence of automated decision-making, including profiling.
Furthermore, User(s) shall be provided a copy of their personal data, free of charge, in an electronic format.
Users shall have the right to obtain from Brainster the erasure of personal data concerning the User, without undue delay. Brainster shall have the obligation to erase the personal information regarding the then User now data subject should one of the following apply:
The Personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
The Data Subject withdraws consent on which the processing is based;
The Personal data have to be erased for compliance with a legal obligation;
User(s) shall have the right to receive Personal data concerning them, which they provided to Brainster, in a structured, commonly used and machine-readable format. User(s) shall have the right to transmit those data to another controller without hindrance from Brainster.
Brainster implements appropriate technical and organizational measures for ensuring, by default, only personal data which are necessary for the specific purpose of processing are processed.
Brainster processes and retains only the personal data absolutely necessary for the rendering of the services of the Platform.
Brainster has implemented data-protection principles, such as data minimization, and integrated the necessary safeguards into the processing in order to meet the requirements as stipulated by the governing law and the General Data Protection Regulation and to protect the rights of the data subjects.
Brainster shall not disclose personal data of the data subject to any third parties.
Notwithstanding, the previous statement Brainster shall where applicable and necessary under applicable law(s) disclose personal data to competent authorities and governing bodies.
Personal data shall be stored on Mailchimp, an all-in-one marketing platform that helps manage client & customer information, secured by login credentials and the level of security thath Mailchimp offers. Access to this database cannot be publicly accessed meaning that access can be granted only to Brainster.
User(s) hereby acknowledge that the level of security offered is appropriate to the level of security promised and maintained by Mailchimp.
All of Mailchimp’s login pages pass data via TLS & the entire Mailchimp application is encrypted with TLS
Login pages and login via the Mailchimp API have brute force protection.
Mailchimp performs regular external security penetration test throughout the year using different vendors. Tests include high-level server penetration tests, in-depth testing for vulnerabilities inside the application, and social engineering drills.
Brainster hereby acknowledges that the use of Google Analytics is incorporated to the extent of measuring how the Website is used by the User(s) and other visitors and to generate reports for Brainster’s internal use. Google Analytics does not collect any personally identifiable information about the User(S).
Company for internet education CBC KOLEKTIV DOO Skopje, a limited-liability company.
Address: St. Kosturski heroi No. 1/1-36 Skopje – Centar, Republic of North Macedonia
E-mail: [email protected]