Kingston Technology Company, Inc. (“Kingston”) recognises that privacy is very important to our customers, and we pledge to protect the security and privacy of any Personal Data that customers provide to us. This includes customer's names, addresses, telephone numbers, email addresses and any information that can be linked to an individual. Not only does Kingston strive to collect, use and disclose Personal Data in a manner consistent with the laws of the countries in which it does business, but it also has a tradition of upholding the highest ethical standards in its business practices. This Personal Data Protection Policy (the "Policy") sets forth the privacy principles that Kingston follows with respect to transfers of Personal Data from the European Union (EU) and other countries with which Kingston does business.
The United States Department of Commerce and the European Commission have agreed on a set of data protection principles and frequently asked questions (the "Safe Harbour Principles") to enable US companies to satisfy the EU law requirement that Personal Data transferred from the EU to the United States be adequately protected. Consistent with its pledge to protect personal privacy, Kingston adheres to the Safe Harbour Principles.
This Personal Data Protection Policy (the "Policy") applies to all Personal Data received by Kingston in the United States from the EU and/or other applicable countries, recorded in any form (including electronic, paper or verbal).
The following definitions shall apply throughout this Policy:
"Agent" - any third party that uses Personal Data provided to Kingston to perform tasks on behalf of and under the instructions of Kingston.
“Kingston” - Kingston Technology Company, Inc. and its affiliates.
"Personal Data - Information or a set of information that identifies or could be used by or on behalf of Kingston to identify an individual. Personal Data does not include information that is encoded, anonymous, aggregated or publicly available information that has not been combined with non-public Personal Data.
Sensitive Personal Data" - Personal Data that reveals an individual's race, ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership or information that specifies the health or sex life of the individual. In addition, Kingston will treat any information as Sensitive Personal Data which is received from a third party where that third party treats and identifies the information as sensitive.
The privacy principles in this Policy are based on the Data Protection Directive and Safe Harbour Principles.
When Kingston collects Personal Data directly from individuals in the EU and/or other applicable countries, it will inform them about the purposes for which it collects and uses their Personal Data, the types of third parties (other than Agents), if any, to which Kingston discloses that information, and the choices and means, if any, that Kingston offers individuals for limiting the use and disclosure of their Personal Data. Notice will be provided in clear and conspicuous language when individuals are first asked to provide Personal Data to Kingston, or as soon as practicable thereafter, and in any event before Kingston uses the information for a purpose other than that for which it was originally collected. If Kingston receives Personal Data from its affiliates or other entities in the EU and other countries with which Kingston does business, it will use such information in accordance with the notices provided by such entities and the choices made by the individuals to whom such Personal Data relates.
Kingston will offer individuals the opportunity to choose (opt-out) whether their Personal Data is (a) to be disclosed to a third party (other than an Agent), or (b) to be used for a purpose other than the purpose for which it was originally collected or subsequently authorised by the individual.
For Sensitive Personal Data, Kingston will give individuals the opportunity to affirmatively and explicitly consent (opt-in) to (a) the disclosure of the information to a third party, or (b) the use of the information for a purpose other than the purpose for which it was originally collected or subsequently authorised by the individual. Kingston will provide individuals with reasonable methods to exercise their choices.
Kingston will obtain assurances from its Agents that they will safeguard Personal Data consistently with this policy. If Kingston has knowledge that an Agent is using or disclosing Personal Data in a manner contrary to this policy, Kingston will take reasonable steps to prevent or stop the use or disclosure.
Kingston will take reasonable precautions to protect Personal Data in its possession from loss, misuse and unauthorised access, disclosure, alteration and destruction.
Kingston will use Personal Data only in ways that are compatible with the purposes for which it was collected or subsequently authorised by the individual. Kingston will take reasonable steps to ensure that Personal Data is relevant to its intended use, accurate, complete and current.
Upon request, Kingston will grant individuals reasonable access to Personal Data that it holds about them, and Kingston will take reasonable steps to permit individuals to correct, amend or delete information that is demonstrated to be inaccurate or incomplete.
Kingston will conduct compliance audits of its relevant privacy practices to verify adherence to this Policy. Any employee that Kingston determines is in violation of this Policy will be subject to disciplinary action up to and including termination of employment.
Any questions or concerns regarding the use or disclosure of Personal Data should be directed to Kingston at the address given below. Kingston will investigate and attempt to resolve complaints and disputes regarding the use and disclosure of Personal Data in accordance with the principles contained in this Policy.
For complaints that cannot be resolved between Kingston and the complainant, Kingston has agreed to participate in the dispute resolution procedures pursuant to the Safe Harbour Principles.
Questions or comments regarding this Policy should be submitted to Kingston by post or e-mail as follows:
Kingston Technology Company, Inc.
17600 Newhope Street
Fountain Valley, CA. 92708 USA
This Policy may be amended from time to time, consistent with the requirements of the Data Protection Directive and/or Safe Harbour Principles. Kingston will provide appropriate public notice about such amendments.