Kinner Lake GDPR Compliance Overview

The General Data Protection Regulation (“GDPR”), which takes effect on May 25, 2018, is an iteration of the existing data protection law defined and enforced by the European Union.

The GDPR imposes new rules on organizations that offer goods and services to data subjects in the EU, or that collect and analyze personal data tied to such EU data subjects.

Kinner Lake limited (“Company”) is fully committed to comply with GDPR prior to its effective date, thus, for months, it has designated an internal team with guidance from external legal counsel, to ensure all required actions are taken in order to achieve GDPR compliance.

Furthermore, Company is in the process of an in-depth audit of the for the purpose of obtaining the ePrivacy seal ensuring GDPR compliance.

Please see below a general overview which details the Company’s compliance with GDPR.

Data Processing

Company only processes personal data to the extent necessary and in accordance with applicable privacy laws including the GDPR. Company has ensured there is an applicable lawful basis for any and all processing of EEA users’ Personal Data.

In addition, Company has ensured all documents, including without limitations, agreements, privacy policies online terms, IOs are compliant with the GDPR.

Company has trained its personnel and employees to educate them with regards to the GDPR, Company’s data practices and the importance of security.

Technological Organizational and Security Standards

The Company has completed an in-depth audit the process of mapping out all of its data sets and its technical and organizational security measures, all as stipulated in our security policy available at: Security.

User Rights

In accordance with GDPR, data subjects may exercise the right to access, rectification, restrict processing, erasure, data portability, the right to complain to a supervisory authority and the right to not be subject to automated processing. In order to exercise any of the above rights please contact our DPO at: dpo@flowsurf.net.

Transparency to Regulators

Company maintains accurate and accessible written records to the extent legally required to provide authorities, all in a timely manner.

Data Protection Officer

Company has appointed a DPO in order to ensure ongoing compliance with the GDPR which can be contacted at: dpo@flowsurf.net