GDPR - Privacy policy

 

Privacy Policy
The following Privacy Policy applies to the use of 1984 ehf services.

1984 ehf ("1984," "we," "us," or "our") continues to put your privacy first. This Privacy Policy is to inform you of what we are doing to ensure  your privacy when accessing or using 1984 services.
This Privacy Policy describes how we collect and use your personal information and the choices you have regarding collection, use, maintenance, access and transmission of your personal information.

By using 1984 services, including our website, you or the entity you represent ("you" or "your") accept and consent to this Privacy Policy.


Definitions

"Terms of Service" the agreement you enter into when you use the services of 1984.

"IP" means any internet protocol address, including without limitation, unique and non-unique network addresses.

"Personal Data" means any information relating to a Data Subject (that's you!) or your End Users directly or indirectly provide to us as part of our services.

"Privacy Policy" means this policy.

"Visitor" or "Visitors" means any individual(s) or entity(ies) that accesses, maintains, transmits, develops, acquires, operates or otherwise uses any 1984 resource but is not a Customer.


Who does the Privacy Policy apply to?
This Privacy Policy applies to all customers and visitors to 1984 services.


In the case of Customers, the Account Holder shall be responsible for:

(i) informing their End Users, if any, of the existence of this Privacy Policy, as well as any amendments, updates or modifications made to this Privacy Policy and

(ii) agreeing to this Privacy Policy, as amended, updated or modified from time to time, on behalf of their or its End Users.

What Personal Data is Collected by 1984?
1984 considers any information that can be used to directly or indirectly identify you to be Personal Data, including without limitation, Personal Data that is accessed, collected, maintained, transmitted and/or used by 1984 in the normal course of our business, and is subject to the provisions of this Privacy Policy and applicable law.

How is Personal Data Collected by 1984?
1984 collects and logs your IP address, the time and duration of your visit, the time and duration of the pages on our website that you view (where applicable) and information about your computer system, such as your browser type and operating system, whenever a 1984 service is accessed or used by you.

In the case of Customers, we collect, maintain, transmit and/or use Personal Data provided by you in your Account, including without limitation, your full name, billing data, contact information, 1984 user ID (assigned when you set up an account) and for customers residing in Iceland, the national identification number "kennitala".
1984 will likely place a cookie on your hard drive during the web visit. A cookie is a unique alphanumeric identifier that 1984 uses to determine the number of unique Visitors that view its website, whether or not those Visitors are repeat Visitors, and the source of the visits.

Cookies cannot be executed as code or used to deliver a virus. Other servers cannot read cookies and personal information cannot be gathered from cookies. Cookies are simply an identifier shared between you and 1984 to allow 1984 to improve the services 1984 offers to you through its website. If you do not wish cookies to be placed on your computer, then they can be disabled in your web browser. The option to do so is normally found in your browser's "security settings" section. However, please note, permanently disabling cookies in your browser may hinder your use of 1984's website as well as other website and interactive services.
1984 does not collect personal information about you as part of visiting our website.


Why Does 1984 Collect Personal Data?

For Customers
1984 strives to collect minimal Personal Data about you. The Personal Data we do collect we use to process your service requests, handle orders, deliver products and services, process payments, communicate with you about orders, provide access to secure areas of 1984's website, as well as to enable 1984 to review, develop and continually improve the products, services and offers that it provides. 1984 also uses this information to prevent or detect fraud or abuses of 1984's website and to enable third parties to carry out technical, logistical or other functions on its behalf.

For Visitors
1984 uses Personal Data to send information about 1984 to Visitors and to contact them when necessary. Visitors have discretion as to whether to grant information to 1984 upon 1984's request for information.

For Financial Information
1984 enables customers to pay for services online  in various ways for instance by entering credit card or national identification information to enable online banking claims to process orders placed for services with 1984.

Credit Card information provided via our website is transferred over a secure connection to Borgun payment processor or Landsbankinn bank for payment processing. 1984 does not store this information and will not authorize the release of the information to anyone not directly involved in processing the transaction. Credit card numbers are used by Borgun and Landsbankinn for processing payments and are not used for any other purposes.

Maxmind provides fraud detection services for 1984 to minimize credit card fraud in connection with purchases of 1984 services.

PayPal provides an outside services. Customers sign up with PayPal and can use their email to connect to PayPal from 1984s website to process a payment for services. 1984 does not send any other information to PayPal.

Alskil is a claims collecting company. If 1984 has a claim on its customers it may ask Alskil to collect that claim. To serve this purpose we send Alskil Personal Data.

1984 will enter into written agreements with these third parties and will continue to enter into written agreements with third parties that provide credit card processing services.

1984 will ensure that appropriate security measures are taken and that confidentiality is in place to safeguard your personal data in accordance with current legislations and regulations applicable.



For Support Information
1984 uses information that you provide to it via telephone calls, chat, e-mail, web forms and other communications to correspond with you about services you may be interested in purchasing. If you elect to purchase a service online using a web form, 1984 will use the information to establish your account. Information you submit in writing, such as chat, e-mail, and web form information is archived and may be tied to information that 1984 collects about your web visits. 1984 may enter information you provide via telephone into its systems to use for the purposes described in this paragraph.


With whom does 1984 share or give access to Personal Data?

1984 Disclosure of Personal Data to Regulatory Agencies
1984 transfers Personal Data to third parties, including law enforcement agencies under the following normal business procedures:
1984 uses a Visitor's IP address to help diagnose problems with its servers, and to administer its website.

1984 uses cookies to help it recognize Visitors as unique Visitors when they return to our website.

1984 also uses cookies to tailor content or advertisements to match your preferred interest; avoid showing Visitors the same advertisements repeatedly; compile anonymous, aggregated statistics that allow 1984 to understand how users use its site and to help it improve the structure of its website (1984 cannot identify Visitors personally in this way);

and count the number of anonymous users of its websites.

1984 uses web beacons to count the number of times that its advertisements and web-based e-mail content are viewed. 1984 combines web beacon information with cookies to track activity on its website originating from advertisements and web-based e-mail content.

If you breach the Terms of Service or other applicable Service Level Agreement, or if 1984 is under a duty to disclose or share your personal data in order to comply with any legal obligation, 1984 may disclose your information to a relevant authority. Disclosure may include, but is not limited to, exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction. In particular, 1984 may release the information it collects to third parties when 1984 believes that it is appropriate to comply with the law, to enforce its' legal rights, to protect the rights and safety of others, or to assist with industry efforts to control fraud, spam or other undesirable conduct.
1984 may release the information it collects to third parties, where the information is provided to enable such third party to provide services to 1984, provided that the third party has agreed to use at least the same level of privacy protections described in this Privacy Policy, and is permitted to use the information only for the purpose of providing services to 1984.

User Choice
Subject to applicable law, you have the choice to and right to limit, restrict or deny 1984's ability to share your Personal Data with third parties or use of your Personal Data for a purpose that is materially different from the purpose for which it was originally collected or authorized by you. In order to exercise your right to choose, please contact us at gdpr@1984.is , or via postal mail using contact information found on 1984's GDPR page.  


Security and Integrity of your Personal Data
1984 has implemented physical, administrative and technical measures designed to protect your Personal Data from unauthorized access, use or disclosure. These measures include:

  • encryption of credit card information in transit

  • password and/or cryptographic key-based authentication controls on servers which host personal information

  • browser-based secure sockets layer encryption

  • storage system access control mechanisms to protect the integrity of internal databases and prevent unauthorized access

  • strict access controls and customised incident response protocols



We require our business partners to provide equal protections for any Personal Data that we share with them. Do you still have questions? Please get in touch at GDPR@1984.is, or via postal mail or facsimile using contact information found on 1984.is/GDPR .

Access to your Personal Data
You control access to Personal Data maintained or stored by you via 1984's web-based interface for account management, umsjon.1984.is. You may update your information at any time. You may cancel your account at any time and may request that your personal information be deleted from our databases, with the exception of: any bookkeeping details of purchases which we are required to store for 7 years in accordance to the legal jurisdiction we are under, network access logs, which may be stored for any duration of time at our discretion, cases where there are outstanding financial engagements or in the cases where illegal activity is deemed to have occurred (as determined by 1984 management or law enforcement officials), in which case personal information may be retained indefinitely for purposes of ongoing investigation and prevention of fraud recurrence, or cases where a violation of the Terms of Service and applicable Service Level Agreement has resulted in cancellation of your account (as defined by revocation of your permission to utilize 1984's services), in which case personal information may be retained indefinitely for purposes of prevention of further use of 1984's services in the future by the offending individual.

Upon request, 1984 will grant you reasonable access to Personal Data maintained by 1984 about you. In addition, we will take reasonable steps to correct, amend or delete information that is demonstrated by you to be inaccurate, incomplete or processed in violation of applicable law. Unless required by law, 1984 will not permit you to access the Personal Data of any Data Subject other than yourself.

Unmanaged Service
You bear sole responsibility for maintaining the security of virtual private server ("VPS") environments maintained under your account(s). You are solely responsible for ensuring compliance with any and all applicable privacy guidelines and regulations for all jurisdictions in which you may operate with respect to appropriate practices for the collection, storage, and dissemination of personal information using your 1984 VPS. In no event shall 1984 be held liable for your failure to adopt and/or practice appropriate measures for safeguarding personal information stored within or transmitted through your 1984 VPS.

Dispute Resolution
Please direct any complaints regarding this Privacy Policy to us at GDPR@1984.is  or via postal mail or facsimile using contact information found on page 1984.is/GDPR. We will attempt to resolve any such complaints in a reasonably timely manner and in accordance with this policy.
You have the right to make a complaint at any time to the
Icelandic Data Protection Authority, the Icelandic supervisory authority for data protection issues.


Changes
Amendments to this Privacy Policy may be made at any time and you should check back frequently for any changes. We will also provide public notice of amendments to this Privacy Policy by email and within the
Service Center. Unless otherwise directed by you, you agree that 1984 shall have the right and ability to amend this Privacy Policy and that you waive any requirement for specific or expressed acknowledgement or agreement to any such amendments or modifications.



This Privacy Policy was last updated on May 24, 2018.