GDPR Compliance

Last updated: January 2024

Our Commitment to GDPR

Alpine-fell is committed to protecting the privacy and security of personal data belonging to individuals in the European Economic Area (EEA). This page provides additional information about how we comply with the General Data Protection Regulation (GDPR).

Data Controller

Alpine-fell acts as the data controller for personal information collected through our website. Our contact details are:

Alpine-fell
742 Wilderness Way, Suite 300
Calgary, Alberta T2P 1G4
Canada

Email: [email protected]

Legal Basis for Processing

We process personal data on the following legal bases:

• Consent: Where you have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications.
• Contract: Where processing is necessary for the performance of a contract with you, such as processing an expedition booking.
• Legitimate Interests: Where processing is necessary for our legitimate interests, such as improving our services, provided these interests do not override your fundamental rights and freedoms.
• Legal Obligation: Where processing is necessary to comply with a legal obligation.

Your Rights Under GDPR

If you are located in the EEA, you have the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal information we hold about you, along with information about how we use it.

Right to Rectification

You have the right to request correction of any inaccurate or incomplete personal information we hold about you.

Right to Erasure

You have the right to request deletion of your personal information in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.

Right to Restrict Processing

You have the right to request that we limit the processing of your personal information in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal information where we are relying on legitimate interests as the legal basis.

Right to Withdraw Consent

Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

International Data Transfers

As we are based in Canada, your personal information may be transferred to and processed in Canada. Canada has been recognized by the European Commission as providing an adequate level of data protection. We ensure that any transfer of personal data outside the EEA is subject to appropriate safeguards.

Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected. The retention period depends on the context of the data and our obligations. When personal information is no longer required, we securely delete or anonymize it.

Data Security

We implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures are designed to provide a level of security appropriate to the risk.

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us at [email protected]. We will respond to your request within one month. In certain cases, we may need to verify your identity before processing your request.

Complaints

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement.

Updates to This Information

We may update this GDPR information from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on this page with a revised date.