JAS Worldwide Management, Inc. with registered office in 6195 Barfield Road, Atlanta, GA 30328, USA, as data controller (hereinafter, “JAS”), informs you, pursuant to the applicable privacy and data protection laws, including but not limited to the EU General Data Protection Regulation 2016/679 (GDPR), the United Kingdom’s GDPR and the Swiss Data Protection Act; the EU Directive 2002/58/EC (e-Privacy Directive), the South Africa Protection of Personal Information Act, Act No. 4 of 2013, the Personal Information Protection Law of the People’s Republic of China (Chairman’s Order No. 91), the General Data Protection Law, Federal Law no. 13,709/2018 of Brazil, the California Consumer Privacy Act of 2018, and all laws or regulations implementing or supplementing the foregoing, all as amended or replaced from time to time, that in connection with the services you or the entity you represent (“you” or “your”) provide to JAS, personal data shall be processed according to the following modalities and for the following purposes:.
Subject to applicable law, the Data Controller processes the following personal data communicated by you prior to and upon you providing services to JAS while utilizing with the Data Controller (hereinafter “Data” or “Personal Data”):
The Data Controller may process the following Personal Data:
For contractual purposes:
the fulfilment by the Data Controller of legal obligations such as:
the pursuing of a lawful interest by the Data Controller, in particular:
The processing of your Data is carried out, both via hardcopy (paper) and electronic modalities, by means of data collection, registration, organization, storage, consultation, elaboration, amendment, selection, mining, confrontation, usage, interconnection, blockage, communication, cancellation and destruction operations. Personal Data is protected so as to minimize the risk of destruction, loss (including accidental loss), unauthorized access/use or use incompatible with the initial purpose of collection. This is achieved through the technical and organisational security measures implemented by the Data Controller.
The provision of Data for the use of JAS Go is mandatory and in case you decide not to provide the Data, you will not be able to fulfill your service requirements to JAS and continue the vendor relationship with the Data Controller.
The Data Controller shall process the Personal Data for the time necessary to fulfil the above purposes and anyway for a period not exceeding 10 years from the termination of the contractual relationship.
Your Data shall not be disseminated but may be transferred outside the European Union. For this purpose, according to the GDPR, the Company assesses the impact of data transfers and adopts, where applicable, the most appropriate safeguards (for example, adequacy decisions or standard contractual clauses).
Subject to applicable law, you may have the right to request access to and rectification of the personal data we maintain about you, or to request the restriction of the processing of your personal data, or to object to that processing on grounds relating to your situation. In certain situations, subject to applicable law, you may have the right to request erasure of your personal data from our systems. Where provided by applicable law, technically feasible, and upon written request, we will export the personal data we process about you and transmit it to you. You can also lodge a complaint about our processing of your personal data with the body regulating data protection in your country. To exercise these rights, please contact us as indicated below, and we will respond as required by law.
You shall be able to exercise your rights anytime by sending an email to:
privacy@jas.com
The Data Controller is:
The updated list of the data processors and persons in charge of the processing is available at the office of the Data Controller.