Your Rights and Choices
The privacy law of the jurisdictions to which Pythian is subject grants you certain rights with respect to your personal information and choices you can make to ensure your information is used for the purposes for which you provided it. The law does not make these rights absolute, and the law also determines the exceptions that apply or the circumstances where the exercise of your rights has limitations. The following information is provided to you so that you can better understand your rights and the choices you can make, including how to make a complaint in the event that you believe Pythian has not handled your information in accordance with applicable legislation:
- PIPEDA in Canada requires that we only collect personal information with your consent, and only collect the amount of information that is essential to the business transaction.
- Upon Brexit, the UK is no longer part of the EU and therefore the EU GDPR does not automatically apply in the UK. Companies in the UK will be subject to the EU GDPR if they meet the threshold required for any non-EU company. With that said, the UK’s Data Protection Act of 2018 (DPA 2018) had already enacted the EU GDPR’s requirements into UK law, and with effect from January 1, 2021, the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019 amended the DPA 2018 and merged it with the requirements of the EU GDPR to form a new, UK specific data protection regime, known as the UK GDPR. If you require more detailed information about your rights and obligations under the UK GDPR, visit https://ico.org.uk/your-data-matters/.
- The Australia Privacy Act 1988(Cth) provides individuals with greater control over their personal information. For more information about your rights and responsibilities under the Privacy Act, please visit https://www.oaic.gov.au/privacy/the-privacy-act/rights-and-responsibilities/.