Last Updated: 07/12/2023
1. Information We Collect
1.1 Categories of Personal Information
We collect various categories of personal information, including but not limited to:
Identifiers (e.g., name, email address, contact numbers)
Financial information (e.g., billing details)
Device and network information (e.g., IP addresses, device identifiers)
Usage data (e.g., log files, pages viewed)
1.2 Legal Basis and Purpose Limitation
The processing of your data is based on the legal grounds as stipulated by the GDPR, such as the necessity for the performance of a contract, compliance with legal obligations, protection of vital interests, consent, the performance of a task carried out in the public interest, or the legitimate interests pursued by Helios Mining Systems.
1.3 Special Categories of Personal Data
We do not intentionally collect or process special categories of personal data (sensitive data) unless necessary and with your explicit consent.
1.4 Data Minimization and Retention
We adhere to the principles of data minimization, ensuring that we only collect and process personal data that is strictly necessary for the purposes for which it is collected. Additionally, we establish specific retention periods for different categories of data, aligning with legal and operational requirements.
2. How We Use Your Information
2.1 Purpose Specification
We process your information for specific and explicit purposes, including:
Providing and managing our products and services
Customer support and communication
Marketing and promotional activities
Analyzing user behavior for service improvement
2.2 Automated Decision-Making and Profiling
We do not engage in solely automated decision-making processes, including profiling, that produce significant legal effects concerning you.
2.3 Data Protection Impact Assessment (DPIA)
For processing activities that may result in high risks to your rights and freedoms, we conduct comprehensive Data Protection Impact Assessments, ensuring a systematic evaluation of the potential impact on your privacy.
3. Information Sharing
3.1 Third-Party Involvement
In certain instances, we engage with third-party service providers and carefully selected business partners for:
Data processing and storage
Analytics and Reporting
Before engaging such third parties, we establish Data Processing Agreements to ensure that your data is handled by applicable data protection laws.
3.2 International Data Transfers
If your data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards, such as Standard Contractual Clauses or Binding Corporate Rules, are in place to protect your privacy.
4. Your Rights
4.1 Individual Rights
As an individual, you have the following rights under the GDPR:
The right to be informed
The right of access
The right to rectification
The right to erasure (‘right to be forgotten)
The right to restrict processing
The right to data portability
The right to object
Rights to automated decision-making and profiling
5. Data Security
5.1 Security Measures
We implement a multi-layered approach to data security, encompassing:
Encryption of personal data during transmission and storage
Access controls and authentication mechanisms
Regular security assessments and audits
Incident response and breach notification procedures
6. Changes to This Policy
7. Data Protection Officer
7.1 DPO Contact
8. Contact Us