Market-Affect: Influencing Minds, Inspiring Action

Market-Affect Privacy Policy

Market-Affect Privacy Policy

Last Updated: October 2024
At Market-Affect, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and process your personal information when you submit a lead form, as well as your rights under applicable data privacy and protection laws.

Consent Statement By submitting your personal information through our lead form, you consent to the collection, use, and sharing of your personal data as outlined in this Privacy Policy. This includes sharing your data with third-party marketing partners for the purpose of contacting you with relevant offers and information. You have the right to withdraw your consent at any time by contacting us at Daniel@market-affect.com.

Table of Contents
1. Does This Privacy Policy Apply to You?
2. What Personal Data Does Market-Affect Process?
3. Do We Use Cookies?
4. For What Purposes Do We Process Your Personal Data?
5. What Are the Legal Bases for Processing My Personal Data?
6. How Long Do We Retain Your Personal Data?
7. With Whom Do We Share Your Personal Data?
8. How Do We Protect Your Personal Data?
9. What Are Your Rights?
10. Targeted Advertising
11. Updates to this Privacy Policy
12. Additional Information for Australian Residents
13. Anonymity and Pseudonymity
14. Handling Unsolicited Personal Information
15. Access and Correction Procedures

1. Does This Privacy Policy Apply to You?
This Privacy Policy applies when Market-Affect processes your personal data. We collect and process your personal data when you:
Submit a lead form on our website
Engage with our marketing promotions or surveys
Contact us in any other way

Children Under 18
Our services are not intended for individuals under 18. If you are under 18, you must have permission from a parent or guardian before providing us with your personal information.

2. What Personal Data Does Market-Affect Process?
We may process personal data such as:
Contact information (name, email address, phone number)
Demographic details (age, gender)
Marketing preferences and engagement history

3. Do We Use Cookies?
Yes, Market-Affect uses cookies and similar technologies on our website. For more details, please refer to our Cookie Notice.

4. For What Purposes Do We Process Your Personal Data?
We process your personal data for the following purposes:
To provide and enhance our services
To communicate with you regarding your inquiries
For marketing and advertising purposes

5. What Are the Legal Bases for Processing My Personal Data?
We may process your personal data based on:
Your consent
A contract with you
Legal obligations
Legitimate interests

6. How Long Do We Retain Your Personal Data?
We will retain your personal data only as long as necessary for the purposes outlined in this Privacy Policy. After this period, we will delete or anonymize your data unless required by law to retain it longer.

7. With Whom Do We Share Your Personal Data?
We may share your personal data with:

Our marketing partners: We may sell or share your lead data with third-party providers to enable them to contact you with offers and information relevant to your interests.

Third-party service providers: These are companies that assist us in our operations, such as marketing agencies, payment processors, and delivery services.

Regulatory authorities: When required by law, we may disclose your personal information to comply with legal obligations.
By providing your personal data, you consent to the sharing of this information with our marketing partners as described above.

8. How Do We Protect Your Personal Data?
We take appropriate measures to protect your personal data against unauthorized access, disclosure, or misuse. This includes technical, administrative, and physical safeguards.

9. What Are Your Rights?
Depending on your location, you may have the following rights regarding your personal data:
Right of access
Right to rectification
Right to object to processing
Right to erasure
Right to data portability
Right to withdraw consent

10. Targeted Advertising
We work with marketing partners to provide personalized advertising and content. This may involve sharing certain information with third-party companies, including lead data, to enable them to contact you with relevant offers. You can opt-out of direct marketing at any time by contacting us at Daniel@market-affect.com.

11. Updates to this Privacy Policy
We may update this Privacy Policy from time to time. We recommend checking this page occasionally for any changes.

12. Additional Information for Australian Residents
If you reside in Australia, the following provisions apply:
All references to ‘personal data’ in this Privacy Policy are equivalent to ‘personal information’ under the Australian Privacy Act.
When transferring your personal information outside Australia, we will uphold the protections required by the Australian Privacy Act.

13. Anonymity and Pseudonymity
You have the option to remain anonymous or use a pseudonym when interacting with us where it is lawful and practicable to do so.

14. Handling Unsolicited Personal Information
If we receive unsolicited personal information, we will determine whether we could have collected the information under the APPs. If not, we will destroy or de-identify the information.

15. Access and Correction Procedures
You can request access to your personal information or request corrections by contacting us at Daniel@market-affect.com. We will respond to your request within a reasonable time and provide details about any information we hold.

For any questions or requests regarding this Privacy Policy, please contact us at Daniel@Market-Affect.com.

In the event of a data breach:

Data Breach Response Plan
1. Purpose This Data Breach Response Plan outlines the procedures to be followed in the event of a data breach to ensure timely identification, containment, investigation, and response, as well as compliance with legal obligations.

2. Scope This plan applies to all employees, contractors, and third-party service providers who handle personal data on behalf of the organization.

3. Definitions
Data Breach: Any unauthorized access to, disclosure of, or destruction of personal data.
Personal Data: Information that relates to an identified or identifiable individual.

4. Roles and Responsibilities
Data Protection Officer (DPO): Responsible for overseeing the implementation of this plan, conducting risk assessments, and reporting breaches to regulatory authorities.

Incident Response Team: A cross-functional team responsible for managing data breach incidents, including IT, legal, compliance, and public relations representatives.

All Employees: Required to report any suspected data breaches immediately to the DPO or designated contact.

5. Detection and Reporting
Employees should be trained to recognize potential data breaches, such as suspicious emails, unauthorized access attempts, or lost devices.
All suspected breaches must be reported immediately to the DPO or designated contact.

6. Initial Response
Containment: The Incident Response Team will work to contain the breach to prevent further unauthorized access or data loss.
Assessment: The team will assess the nature and scope of the breach, including the types of personal data involved and the number of affected individuals.

7. Investigation
The Incident Response Team will conduct a thorough investigation to determine the cause of the breach, how it occurred, and the extent of the impact.
Document all findings and actions taken during the investigation.

8. Notification Procedures
Internal Notification: Inform relevant internal stakeholders about the breach and the actions being taken.

External Notification: If required by law or if the breach poses a risk of serious harm to individuals, notify affected individuals promptly and provide clear information about the breach, including:The nature of the breach
The personal data involved
Actions taken to mitigate harm
Recommendations for individuals to protect themselves

Regulatory Notification: Report the breach to relevant regulatory authorities as required by law within the specified time frame (e.g., 72 hours under the GDPR).

9. Remediation and Prevention
Take immediate action to remediate the breach, including improving security measures, updating policies, and providing additional training to staff as necessary.
Conduct a post-incident review to evaluate the response and identify areas for improvement to prevent future breaches.

10. Documentation and Reporting
Maintain detailed records of the breach, including:Timeline of the incident
Actions taken in response
Communications with affected individuals and regulators
Prepare a final report summarizing the incident, response, and lessons learned for internal review.

11. Training and Awareness
Provide regular training for employees on data protection and breach response procedures.
Conduct simulations of data breach scenarios to ensure readiness.

12. Review and Update
Review and update this Data Breach Response Plan annually or after any significant incident to ensure its effectiveness and compliance with current laws and best practices.