FOR THE PROMOTION OF DATA PROTECTION BY DESIGN AND BY DEFAULT
The Leal ‘GROUP’ comprises of a ‘GROUP’ of independent companies dedicated to ensuring that you always experience an excellent range of services and product offerings as you interact with us.
As you enjoy our range of major international brands, we have a team dedicated to ensuring that you receive only the best products and services.
Our products and services are displayed and hosted on a number of websites, depending on the service or product you seek.
Other companies that fall within the Leal Group include:
PHARMACY NOVELLE LTD. (PNL)
LEAL EQUIPEMENTS CIE LTEE. (LEC)
LEAL ENERGY LTD. (LE)
UNITED MOTORS LTD. (UML)
DISTRIPC LTD. (ELYTIS)
LEAL AGENCY LTD. (LACY)
LEAL COMMUNICATIONS AND INFORMATICS LTD. (LCI)
BEST FIT LTD. (BFIT)
OUR APPROACH TO DATA PROTECTION
Our team is vast and is spearheaded by the Group Data Protection Officer as well as CEO of each independent company - all dedicated to ensuring that your data is treated with the utmost care and regard through aligning policies, procedures, systems and best practices with our obligations under the GDPR (General Data Protection Regulations) and all other official Data Protection Legislation in line with the scope of our operations and with respect to the jurisdictions in which we operate.
INTERACTING WITH OUR SITES
As you interact with us through our sites, we may ask you for personal data in order to provide you with the best service or products you seek or to optimize your browsing experience.
Our team has created this info page to ensure that you are aware of how we handle your personal data. We have tried to keep this page simple and interactive, but if there is anything regarding our policies (linked to on this page) that you would like to know more about, get in touch with our ‘GROUP’ Data Protection Officer at: email@example.com
Social Plug-Ins are small additions to the website that usually come in the form of a “Like”, “Comment”, “Comment” or “Embed” buttons. These buttons allow you to connect with activities and items on Social Media websites such as Facebook and Twitter.
When you click on one of the Social Plug-In buttons, the corresponding data is sent from your browser to the server of the Social Media Company and your personal data may be stored there.
Therefore, please ensure that you review your rights and setting options on the social media sights you visit as your data will in addition be subject to their data and privacy policies.
OUR PLEDGE TO YOU
❏ Our team will work on ensuring that your data is processed fairly, with due notice and legally at all times
❏ We will not process any of your personal data unless it is absolutely and or legally necessary
❏ We will ensure that you are made aware at any point at which we may process your personal data
❏ In cases where you have provided us with your data, and where your data is stored for legitimate and legal reasons, we will ensure that you have access to your data upon request and will provide you with adequate opportunities to update the data that we hold about you
❏ Our ‘GROUP’ will ensure that, whichever member of the ‘GROUP’ and for whatever purpose you have supplied your data, our information and software security measures are adequate to safeguard your data
❏ As custodians of your data, we will ensure to keep your information completely confidential and will not share any of your data with third parties outside of the legal scope of our relationship, until and unless you have been informed and your consent is obtained
❏ If at any point, your personal data has been compromised, we will notify you within 72 working hours of detection of the breach.
WHAT TYPE OF DATA DO WE COLLECT?
Your personal data may include your personal phone number, your name, your email address, IP addresses, VIN numbers, etc. Your personal data may also be collected through plug-ins and cookies, etc.
If you are using our website, you will receive a prompt to ensure that you provide your consent before providing your personal details. Please read the prompt carefully before clicking ‘NO’ or ‘YES’ to the collection and processing of your personal data.
The prompt will always include what type of data we will need to collect in order to process your request. More information regarding the collection and processing of your data can be found in the company policies listed above.
For all other purposes for data collection, not including the collection of your personal data through our website(s), we will ensure to obtain your consent in line with one of the company privacy policies listed above.
You may also decide not to share your personal data (on the website) with us, which is absolutely fine!
However, if you do send us an email with an inquiry, this will be considered as an implied consent to use your email address to provide an adequate response.
A "cookie" is a piece of information that a website transfers to the cookie file of the browser on your computer's hard disk so that the website can remember who you are. A cookie will typically contain the name of the domain from which the cookie has come, the "lifetime" of the cookie, and a value, usually a randomly generated unique number.
•to help us recognise you as a unique visitor (just a number) when you return to our website and to allow us to tailor content of our site to match your preferred interests;
•to compile anonymous, aggregated statistics that allow us to understand how users use our site and to help us improve the structure of our website. We cannot identify you personally in this way.
Two types of cookies may be used on this website : session cookies, which are temporary cookies that remain in the cookie file of your browser until you leave the site, and persistent cookies, which remain in the cookie file of your browser for longer ( how long will depend on the lifetime of the specific cookie).
Some of our Web pages may also contain electronic images known as Web beacons (sometimes known as clear gifs) that allow us to count users who have visited these pages. Web beacons collect only limited information which including a cookie number, time and date of a page view, and a description of the page on which the Web beacon resides.
You can accept or decline cookies by modifying the settings in your browser. However, you may not be able to use all the interactive features of our site if cookies are disabled.
You can find Information on how to disable or enable cookies by visiting www.allaboutcookies.org
WHEN DO WE AQUIRE YOUR PERSONAL DATA
We acquire your personal data when you get in touch with us (on the site for example or through social media), when you visit one of our dealerships, when you communicate your interest in one of our products, etc.
If you provide information to us on behalf of someone else, you confirm to us that you have the permission of the other person to do so and that they are aware of the contents of this notice.
ON WHAT BASIS DO WE PROCESS YOUR PERSONAL DATA?
We may process your personal data for limited reasons. These include where your express consent has been gained, during the performance of a contract, where we are legally obligated to, where the vital interests of yourself or others are involved or where there is a legitimate or public reason to do so.
WHAT ARE YOUR RIGHTS, AS A DATA SUBJECT?
Through the integration of our Data Protection Policies and Guidelines, we have created structures that ensure that all of your rights as a ‘data subject’ are fully considered and that your personal data is treated with the highest regard, whilst ensuring that you continue having a seamless experience with us.
Other than where legal or contractual restrictions apply, you have the right to engage in any of the following:
You may inform us that you have chosen to restrict the processing of your data. This means that you may request that for certain functions, we DO NOT process your personal data. However, in line with our data protection principles, we will not process any category of your personal data without a legitimate need to do so.
You have the right to rectify any data that we currently hold or process. If you would like to update or change certain data, please reach out to our Data Protection Officer, who will ensure that the relevant department is notified. You also have the right to complete data if you feel that the data that we hold is not complete or is insufficient.
You may choose to request that all your personal data be erased from our system. If this is your request, our DPO will be in touch to ensure that you are made aware that your data has been erased in line with our Erasure Policy. This will be the final communication from us as we will then delete your contact from our systems.
If you would like to object to the processing of your data for certain purposes, do inform us and provided that we are not bound by legal obligation, we will acquiesce to your request. If there are legal limitations to your request, to ensure that you are aware of these limitations, we may contact you via email to communicate this.
You may ask for all personal data that we hold. We will provide a copy of this information, free of charge and within a reasonable time from your request. A copy of your data will be sent to you electronically in PDF via encrypted email. A password will be sent to you through a second email. In certain circumstances, and upon request from you, we may acquiesce to your request to receive your data in a different format, provided that this is feasible.
If any of the above is a request you would like to make, please reach out to our DPO:
If we fail to fulfil your request, or address a concern that you raised, you have the right to place a complaint with the Data Protection Commissioner.
OUR APPROACH TO DATA BREACHES
We take data breaches very seriously! Where a data breach comes to our attention, you will be notified within 72 hours of our knowledge of the breach. In addition, an investigation will be conducted to assess where the breach happened and why to ensure that a repetition does not occur.
A data breach is any activity that exposes your personal data to entities that should otherwise not be able to attain your personal data (entities to which you did not consent the processing of your personal data). A data breach can be an act of accessing or providing data by unauthorized entities or an omission to provide the security systems that should provide adequate security against unauthorized data.
PERSONAL DATA OF MINORS
Leal ‘GROUP’ will not knowingly collect, process or store the personal information of any person below the age of 16 without the express consent of the parent or legal guardian.
REMEMBER, YOU ARE IN CHARGE OF YOUR DATA
In line with our commitment to you, we would like to ensure you that you have the right to restrict, rectify or delete your data, depending on how your data was obtained and for what purposes it is being processed.
Each one of our companies is wholly dedicated to ensuring that you have a fantastic experience at all times. As such, feel free to contact the DPO should you have any queries or concerns!
As always, we look forward to engaging with you!