This Policy applies to all websites in UEFI’s domain including:
- UEFI Workspace
Data We Collect and How We Use It
Visitors can visit UEFI’s website without providing any personal information to UEFI. However, UEFI does collect personally identifiable information, like name, postal addresses, e-mail addresses, etc., only if specifically and knowingly provided by visitors who voluntarily do certain activities on UEFI’s websites such as join one of UEFI’s distribution lists, register to use the UEFI Workspace, or register for a UEFI event including but not limited to registration for plugfests. The information a visitor provides is used to fulfil a specific request, unless the visitor grants UEFI permission to use the information in another manner, for example to add the visitor to a mailing list.
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
- Where we need to perform a service or contract we have entered into with you.
- Where we keep you informed about our activities or relevant news or information as contained in newsletters, press releases etc., for the receipt of which you have explicitly signed up
- Where it is necessary for authentication, navigation within and use of UEFI web sites
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
- Where we need to comply with a legal or regulatory obligation.
Visitors may submit e-mail inquiries or comments to UEFI websites. Any information collected within the context of an e-mail inquiry or comment made in connection to the UEFI websites is used only for the expressed purpose of responding to that inquiry or comment. Except as specifically indicated, UEFI does not give, sell, or rent visitor information to third parties for commercial marketing. Notwithstanding the foregoing, UEFI reserves the right to access and/or disclose user information as required by courts and/or administrative agencies and to the extent required to permit UEFI to investigate suspected fraud, harassment or other violations of law or of the UEFI website policies.
UEFI collects non-personal information (such as the number of visitors) for various reasons, including site management or for statistical purposes. These statistics include no personal information.
We may receive personal data about you from various third parties and public sources, including but not limited to: Constant Contact, Higher Logic, Nereus Worldwide, and VTM Group.
We may have to share your personal data with the following parties for the purposes set out above: Higher Logic and VTM Group.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions. UEFI will occasionally send visitors that have specifically and knowingly provided personal data information on events that may be of value. Visitors may opt out of UEFI’s mailing list(s) by sending an e-mail to firstname.lastname@example.org
Where we need to collect personal data by law, or, for example, under the terms of a contract we have with you or a service obligation we have towards you and you fail to provide that data when requested, we may not be able to perform the contract or service. In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
Change of purpose
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us via email@example.com.
If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.
UEFI’s websites are intended for adults. UEFI does not knowingly collect personal information from children under the age of 13. If UEFI obtains knowledge that it has personally identifiable information about a child under 13 in retrievable form in it files, UEFI will delete that information from our existing files.
Updating Personally Identifiable Information
Any visitor may opt out of UEFI’s mailing list(s), or change, update, or delete an email address by contacting firstname.lastname@example.org
Other Privacy Information
To prevent unauthorized access, maintain data accuracy, and ensure the appropriate use of information, UEFI has put into place appropriate physical, electronic, and managerial procedures to safeguard and secure the information it collects online. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Links to Other Sites
UEFI websites may contain links to other websites, including professional networking forums, bulletin boards, etc. If you use UEFI’s websites to link to these outside websites, please be aware that any personal information you submit can be read, collected, or used by other users of these forums, including to send unsolicited messages. UEFI is not responsible for access to or use of personal information you choose to submit or share with others.
UEFI does not control the accuracy, relevance, timeliness or completeness of this outside information and does not warrant, guarantee, or make any representations regarding the accuracy, completeness, efficacy, timeliness, merchantability, or fitness for a particular purpose of the content or data located on such sites. UEFI is not responsible for, and expressly disclaims all liability for, damages of any kind arising out of use, reference to, reliance on, or performance of such content or data. Further, the inclusion of links to particular items is not intended to reflect these items’ importance, nor is it intended to endorse any views expressed or products or service offered on these outside sites, or the organizations sponsoring the sites.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
Details of retention periods for different aspects of your personal data are available in our retention policy which you can request from us by contacting us via email@example.com.
Your Legal Rights
Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include the right to:
- Request access to your personal data.
- Request correction of your personal data.
- Request erasure of your personal data.
- Object to processing of your personal data.
- Request restriction of processing your personal data.
- Request transfer of your personal data.
- Withdraw consent.
If you wish to exercise any of the rights set out above, please contact us via firstname.lastname@example.org.
You have the right to make a complaint at any time to the relevant data protection authority in your country. We would, however, appreciate the chance to deal with your concerns before you approach the authority so please contact us in the first instance.
Disclaimer of Liability
No data transmission over the Internet can ever be 100% secure and UEFI cannot guarantee the security of the information that visitors transmit via UEFI’s online services. UEFI shall not be liable for losses related to information transmitted via UEFI’s online services. UEFI does not accept any responsibility for any loss, disruption or damage to data or computer systems which may occur while using material derived from UEFI websites and does not warrant that the functions contained in the material in this site will be uninterrupted or error free. The user of the information available for public use on UEFI’s websites assumes the risk of using or relying on such information. UEFI shall not be liable for any damages, including indirect, special, incidental, or consequential damages a user incurs as a result of viewing, distributing, or copying materials made available to the public, even if advised of the possibility of such damages.
Last updated on May 25, 2018.