The Policy shall be deemed accepted by the User upon their clicking the respective button, “I have read and agree to the Policy”.
The terms used in this Policy shall be understood in accordance with the Terms and the applicable law.
1. INFORMATION ADMINISTRATION COLLECTS
Administration collects information from and about the Users:
directly from the Users when they provide it to us, as provided in paragraphs 1.2. and 1.3. hereof;
automatically when the Users use Difmark, as provided in paragraph 1.4. hereof.
The Administration shall be entitled to collect, store and use the following data on the User (hereinafter – “Collected Information”):
by which the User may be personally identified, that is defined as personal or personally identifiable information (PII) under an applicable law / any other identifier by which the User may be contacted online or offline (hereinafter – “Personal Information”);
that concerns all the operations conducted through Difmark or by using Difmark, which does not allow to directly identify you.
This data includes:
contact details, such as name (corporate name and identification number – for legal entities), address, telephone number, email address;
financial and transaction data, such as credit or debit card number, and bank account information; name of the recipient and provider if applicable; and
any other information, which is provided by the User in order for Difmark marketplace to provide Services.
When the User accesses and uses Difmark, we may automatically receive such information:
the data of the browser used, the type and version of the operating system;
the type of the device used and its screen (monitor) resolution;
the used IP address;
the time and date of visiting Difmark;
other data the use of which is necessary for the operation of Difmark marketplace as a whole and its improvement (optimization).
2. USE AND STORAGE OF THE INFORMATION
Administration uses the Collected Information to:
provide the Services;
detect and prevent fraud;
mitigate financial loss or other harm to Users and Administration; and
promote, analyze and improve Difmark marketplace Services.
Administration may use the Collected Information, in particular, to:
verify an identity for compliance purposes, including but not limited to, KYC procedures;
monitor and prevent fraud and other harmful activity;
respond to inquiries, send Services notices and provide customer support;
for regulatory purposes and compliance with standards;
develop new products;
send marketing communications.
Administration shall store the Collected Information subject to the Internet Security framework and safeguards for a reasonable time depending on the nature of the Services or for the time prescribed by applicable law.
If the User terminate their Account, the Administration will remove their Personal Information. However, please note:
there is a possibility of delays in removal of the information from our servers; and
the information may be saved if it is necessary to fulfil our regulatory, legal and financial obligations, dispute resolution, or for the fulfilment of our contracts.
2.5. Whenever the User gave the Administration their consent to collect, use, store or disclose their PI, they have the right to withdraw such consent at any time by emailing to us, as indicated in the Contact information.
2.6. As indicated in the Terms, the person shall not use Difmark if they are under 18 years of age.
2.7. If the User’s personal information changes, they can update or correct it in the registered Account or by emailing to us.
2.8. If the Administration informed the User and the User agreed, the Administration may use the User’s PII to send notifications, newsletters, Services and other updates. Such mailings may contain the tracking technologies. The User may subscribe or unsubscribe of these mailings by email or through instructions enclosed in the notification. The User may also send a browser-based “do not track” (DNT) request. The User may enable or disable DNT on any browser. E.g., in Google Chrome, the User may proceed to the Settings page, Advanced Settings, scroll down the privacy section and click on (activate/deactivate) “Do not track”. Similar setting can be adjusted on other browsers (Firefox, Safari, Internet Explorer, etc.)
3. DISCLOSURE OF INFORMATION
Administration may disclose to third parties the aggregated information about the Users, and information that does not identify any individual within the scope of the provision of the Services, based on the nature of the Services, except for the cases described in this Policy.
Administration is entitled to transfer the Personal Information of the User, or the personal data base, including the Personal Information of the User, in whole or in part, to third parties, included but not limited to, third parties, including those located outside the State of Delaware, without notification of the User, in particular, to:
Administration’s subsidiaries and affiliates;
persons responsible for financial monitoring;
to other persons, if this is required by the Terms or under the applicable law.
By no means shall Administration disclose the Personal Information to other persons or in other ways than specified in this Policy, other than with a prior consent of the User.
4. LINKS TO OTHER WEBSITES
In any case, it is the User’s responsibility to familiarize itself with the privacy and practices of these third-parties’ websites.
Administration takes a wide range of reasonable measures (organizational, technical, administrative etc.) to protect Personal Information within provision of the Services from loss, theft, misuse, unauthorized access, disclosure, alteration and destruction.
In case the User has the reasons to believe that their interaction with Difmark might be no longer secure, the User has to contact Administration immediately. When appropriate, Administration shall notify those Users whose information may have been compromised and to take other steps in accordance with applicable law.
6. DISCLAIMERS AND LIABILITY AS TO PRIVACY
Only authorized Administration’s employees shall have access to the User’s Personal Information. Such employees undertake duty to strictly observe the confidentiality and prevent unauthorized access of third parties to the Personal Information and other data of the User.
Despite the taken measures to protect Personal Information, Administration warns that no data transmission or storage system can be guaranteed to be 100% secure. The measures taken by Administration to improve the safety of Personal Information will not guarantee a 100% safety as well.
Administration shall not be responsible for the consequences of the User’s voluntary entering (placement, distribution or dissemination) of any of their Personal Information or the Personal Information of the other Users somewhere within the Services provided by Administration.
Administration shall not be obliged to inform the User of the threats connected with the placement of their Personal Information somewhere beyond the Services scope every time or with a certain recurrence.
Administration shall not be responsible for any acts of the Users and third parties in relation to the Users’ Personal Information both within and beyond the Services provided by the Administration irrespective of whether the data were received during the Services provision or otherwise.
When registering, the User shall confirm that they will provide true and accurate information. If the User provides untrue (erroneous) or inaccurate information or the Administration has reasonable and sufficient grounds to believe that such information is untrue (erroneous) or inaccurate, the Administration shall be entitled not to render its Services, and for the registered Users to block the User’s Account on a temporary basis (till all the disputable matters are settled) or indefinitely, as provided in Terms.
Administration shall not be responsible for illegal acts of third parties, hackers, intruders, and other violators who may breach the provisions of this Policy and try to take possession of the User`s data and Personal Information in full or in part, as well as use it for personal purposes.
7. GOVERNING LAW. GDPR APPLICATION
7.1. These Terms and other relationships between the Parties are governed by the law of the State of Delaware (USA), applicable federal law, the Federal Arbitration Act, without regard to principles of any conflict of laws.
7.2. As to EU/EEA-based users, upon the digital items’ purchase and sale operations execution, a transfer of data, in particular personal data, may be carried out in cross-border international transactions. This implies that your personally identifiable information (PII) may be transferred, processed, collected and stored beyond the EU/EEA when you use this online marketplace Difmark and provide us and/or the seller(s), as well as other relevant third parties, where applicable, with your PII. By doing so you agree to your PII transfer, processing, collection, and storage.
7.3. If an EU/EEA-based User purchases and/or sells the products/services through our online marketplace, we will be their Data Processor and Controller, in accordance with the GDPR.
7.4. EU/EEA-based User will be asked to give its consent to submit its PII to us and/or enable/disable cookies used by our website.
This Policy may be amended, including any material change, at any time without giving the Users any prior notice.
Any amendments or additions to this Policy shall be valid only after a new version of the Policy is placed at Difmark website. The new version of the Policy shall come into force at the moment it is placed at Difmark website, unless otherwise provided for by the new version of the Policy.
The date the Policy was last revised is identified at the top of the page. The User is responsible for ensuring that the Administration has their up-to-date active and deliverable email address, and for periodically visiting this Policy to check for any changes.
9. CONTACT INFORMATION
If you have any questions about this Policy, please contact us by emailing to: firstname.lastname@example.org