All references in this Policy to ZD Academy being a trade name of Zampa Debattista under which we operate, “ZD Academy” “we”, “us”,“our” and like terms should be interpreted accordingly.
This Policy is being implemented in accordance to the terms of the Data Protection Act (Cap. 440 of the Laws of Malta) and the General Data Protection Regulation (Regulation (EU) 2016/679), the most recent Regulation implemented within the European Union to regulate data protection in order to guide on the activities of Zampa Debattista.
This Policy governs your personal information which is processed as part of your relationship with us and, its collection which shall include legal and regulatory compliance, personnel, security and operations management. It is important to us that you understand how we handle your personal information.
This Policy may be updated from time to time to reflect the current legal obligations and practices laid down by ZD Academy. You will be notified with any changes to this Policy and where explicit consent is necessary, we will obtain such consent directly from you.
WHO ARE WE?
WHAT IS PERSONAL DATA?
Personal data refers to any information relating to an identified or identifiable natural person, whom the latter can be identified, directly or indirectly, in particular by reference to an identifier. This personal information may be processed – such processing refers to any operation which is performed on personal data such as collection, recording, organisation, structuring and storage.
WHICH PERSONAL DATA DO WE COLLECT?
In the process of collection of data, you should be aware that there may be instances in which the personal information provided by yourself to us is considered as “Sensitive Data” which may include among others, personal information for the determination of the individual’s racial or ethnic origin, political opinions, religious beliefs, physical or mental health or judicial data.
With respect to our Clients we may collect the following information:
– Maritial status
– Identification Number
– Banking and other financial data
– Date of Birth
– Mainiling address
– Email address
– Cookies and similar technologies
– Any other similar information
PROCEDURE FOR THE COLLECTION OF CLIENT PERSONAL DATA
1. Directly from yourself (whether directly or verbally)
2. Generated by us in correspondence etc.
3. Received by third parties in relation to the services provided by ourselves
following your permission, which may be obtained directly from you or indirectly through your actions. In such instances, we will make sure that such third parties are entitled to disclose such information to us.
PROCESSING FOR PERSONAL DATA
1. You have given your clear affirmative consent, signifying agreement to the processing of your personal data for one or more specific purposes
2. Processing is necessary for compliance with a legal obligation to which we are subject;
3. Processing is necessary in order to protect your vital interests or another person;
4. Processing is necessary for the purposes of our legitimate interests or of a third party except where such interests are overridden by your interests or
fundamental rights and freedoms which require protection of your personal data.
RESTRICTION OF PROCESSING
1. You contest the accuracy of the personal data for a period, enabling you to verify the accuracy of the personal data or;
2. The processing is unlawful, and you oppose the erasure of the personal data and request the restriction of personal data instead or;
3. We no longer need the personal data for the purposes of processing or;
4. You have objected to processing pending the verification whether our legitimate grounds override yours;
Furthermore, subject to legal or contractual restrictions, you may withdraw your consent to the processing of your personal data.
Any communications with respect to such withdrawal or variation of consent shall be in writing and addressed at firstname.lastname@example.org.
ACCURACY, ACCESS AND RECTIFICATION OF YOUR PERSONAL DATA
We will employ reasonable means to keep your personal data accurate, complete and up to date for its intended use, however you must immediately inform us if and when your personal data changes.
In so far as your data in concerned, you shall have the right to to receive confirmation that your data is being processed and may request access to your personal data. You may further request a copy of the personal information obtained by ourselves – such request may be made verbally or by electronic means. We will provide a copy of such in a commonly
used electronic form.
Provided however, your right to access to personal information that we hold about you is not absolute. Where applicable law or regulatory requirements allow us to refuse to provide such personal information, or where the request for access is manifestly unfounded or excessive, we shall reserve our right not to respond, or charge a reasonable fee, taking into account the
administrative costs of providing the information.
In those circumstances where it is impossible to provide you with access to your personal data, we will provide reasons as to why this is not possible, subject to any legal or regulatory restrictions.
As our Client, you may review your personal data which we hold on yourself in order for you to be able to verify the lawfulness of the processing carried out by ourselves. When you become aware of any inaccurate or incompleteness in their personal data, you are to inform the ZD Academy for rectification. Where it results that there is inaccurate information, we will amend such data with the alternative text that you believe that it is accurate. Furthermore, we shall take all the necessary steps to inform any relevant third parties which hold the inaccurate information to rectify accordingly.
YOUR RIGHT OF ERASURE
DISCLOSURE OF YOUR PERSONAL DATA
When we share your personal information with such third parties, we make sure that such parties make use of this data in a manner which ensures safety and security to your personal data.
PROTECTION OF YOUR PERSONAL DATA
We will use appropriate administrative, technical and physical measures to safeguard your personal data against loss, misuse, theft, modification, disclosure or destruction. We will restrict access to your Personal Data under our control to our employees and agents of ZD Academy who possess legitimate business needs for such access.
HOW DO WE STORE PERSONAL DATA AND FOR HOW LONG IS YOUR PERSONAL DATA RETAINED?
Safeguarding the privacy of your personal data is of utmost importance to us and henceforth, all necessary technical and organizational measures will be taken in securing that your personal data is stored safely and all precautions will be carried out to ensure that no authorized or unlawful processing of personal data takes place.
We will retain your personal data for as long as we believe that such data is necessary to fulfill the purposes for which the personal data was collected, except as otherwise allowed or required by applicable laws and regulatory requirements. When we consider that such personal data is no longer required, we will remove any details that will identify you or destroy any records in relation to yourself.
Therefore, when visiting our website, we may collect the following information from your browser:
– Your IP Address and/or domain name
– Your operating browser and platform
– Date, time and length of your visit
– Resources accessed
Kindly note that if no longer want your browser from accepting new cookies or disabling cookies altogether, you may do this by changing your browser settings.
If you do not want to receive marketing material from us, you can contact us as detailed below:
– For electronic communications, you can choose to click on the unsubscribe button in the communication sent to you or;
– For hard copies of the communications, you can email us on
– Through our contact details on our Website
COMPLAINTS AND CONCERNS
If you have any concerns with regards to our privacy methods and processes, you have the right to contact us by telephone, in writing or by e-mail to make a complaint which will be dealt within the shortest time possible.
In case you are not satisfied with our response, you may contact the Office of the Information and Data Protection Officer. You can find the details about how to do this on the IDPC website at https://idpc.org.mt/en/Pages/contact/complaints.aspx