Data protection law is part of our personal rights. Especially in our constantly developing and networked world, the importance of these rights should not be underestimated. For ZSP Finance, data protection law in all its forms and requirements is very important, which is why we take the protection of your data very seriously and always strive to provide an appropriate level of protection on our website, www.zspgrp.com. We do so at all times in according with Florida`s Privacy Protection Act (FPPA) and the EU`s General Data Protection Regulation (GDPR).

You are free to use our website without disclosing your personal information. However, it may be necessary to collect and process your data if you wish to use one of our services, such as contacting us via our website or filling in the online application form. If this is the case and there is no legal basis for this processing, we will always obtain your consent for the respective process.

As the controller, we have implemented numerous technical and organizational measures to ensure the most complete protection of personal information processed through this website. Since, despite all technical precautions, absolute protection cannot be fully guaranteed during data transmission, you are free to transmit your personal information by other means, for example by telephone.

Who we are
The person responsible for this website is:

ZSP Finance
Hallandale Beach, Florida, USA 
Phone: 917-940-4429
E-mail: zev@zspgroupllc.com
www.zspgrp.com

What data and information we collect
Our website collects a series of general data and information from you each time you access the website. This general data and information are stored in the server's log files. The following data may be collected

the browser types and versions used
the operating system used by the accessing system
the website from which an accessing system arrives at our website (so-called referrer),
the sub-websites which are accessed via an accessing system on our website,
the date and time of an access to the website,
an internet protocol address (IP address),
the Internet service provider of the accessing system and
other similar data and information that serve to avert danger in the event of attacks on our information technology systems.

When using this general data and information, our company does not draw any conclusions about you. Rather, this information is required in order to display the contents of our website correctly and also to optimize those contents as well as the advertising for the contents.

Furthermore, we need the above-mentioned information for the permanent functionality of our IT infrastructure and technology of the website. Last but not least, we may need the information to provide necessary data to law enforcement agencies in the event of criminal prosecution.

Therefore, we evaluate this anonymously collected data and information for statistical purposes, on the one hand, and for the optimization of data protection and data security within our enterprise, on the other hand, in order to ultimately ensure an optimal level of protection for the personal information we process. The anonymous data of the server log files are stored separately from any personal information you provide.

The concrete purpose of the data processing on our website is, among others

Provision of our online offer with associated user-friendliness,
office and organizational procedures,
the performance of contractual services and services,
administration and answering of enquiries,
security measures

What rights do you have?
Florida Specific Rights
If you are a Florida resident, you have the following rights:
You have the right to:

request, up to two times each year, access to categories and specific pieces of personal information about you that we collect, use, disclose, and sell.
request that we delete personal information that we collect from you, subject to applicable legal exceptions.
“opt out” of the “sale” of your “personal information” to “third parties”

Under the General Data Protection Regulation, you have a number of possibilities to assert your rights. In order to comply with our duty to inform you in this respect, those rights are set out below:

Right to confirmation
Right of access
Right to rectification
Right to erasure (right to be forgotten)
Right to restriction of processing
Right to data portability
Right to object
Right to information and complaint to a supervisory authority
Right to revoke consent

Legal permission for data processing
The legal basis for the above-mentioned processing operations for ZSP Finance is.
Art. 6 I lit. a GDPR, where we obtain your consent for a specific processing purpose.
If the processing of personal information is necessary, for example, due to the performance of a contract between you and us, this processing is justified by Art. 6 I lit. b GDPR.
The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of enquiries about our products or services.
If our company is subject to a legal obligation through which the processing of personal information becomes necessary, such as for the fulfilment of tax obligations, the processing is based on Art. 6 I lit. c GDPR.
It may happen that the processing of personal information becomes necessary in order to protect your vital interests or the interests of another natural person, Art. 6 I lit. d GDPR.
Finally, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that your interests, fundamental rights and freedoms are not overridden. Our legitimate interest within the meaning of Article 6 I lit. f of the GDPR is in particular the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.

Provision of the online offer and web hosting
In order to provide our website securely and efficiently, we use the services of one or more web hosting providers from whose servers (or servers managed by them) the online offer can be accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services as well as security services and technical maintenance services.

The data processed on our website may include those details that arise in the course of use and communication. This regularly includes the IP address, which is necessary to display the contents of our online offer, and all entries made within our online offer or web sites.

E-mail dispatch and hosting
We use web hosting services, which include the dispatch, receipt, and storage of e-mails. For this purpose, the addresses of the recipients and senders as well as further information regarding the e-mail dispatch (e.g., the providers involved) and the contents of the respective e-mails are processed.

Please note that e-mails are generally not sent encrypted on the Internet. In most cases, e-mails are encrypted on the transport route, but (unless a so-called end-to-end encryption procedure is used) not on the servers from which they are sent and received. We can therefore not assume any responsibility for the transmission path of the e-mails between the sender and the reception on our server.

Collection of access data and log files
We collect data on every access to the server (so-called server log files). The server log files may include the address and name of the web sites and files accessed, the date and time of the access, the amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider. In short, server log files record all processes that happen on a website.

Among other things, server log files are used for security by detecting and warding off attacks or to ensure server utilization and stability.

Contacting us
You have several options of contacting us. By submitting the respective information, you agree that the data you provide will be electronically recorded and stored for up to 6 years. The legal basis of the processing in the contractual relationship is Art. 6 para. 1 p. 1 lit. b GDPR, otherwise Art. 6 para. 1 p. 1 lit. f GDPR. We have a legitimate interest in conducting the exchange you are seeking or in processing your inquiry appropriately. In this respect, we use your data exclusively for processing your inquiry.

Live Chat
On this website, anonymized data is collected and stored using technologies provided by Ascend by Wix, for the purpose of web analytics and to operate the live chat system used to respond to live support requests. Usage profiles can be created from this anonymized data under a pseudonym. Insofar as the information collected in this way has a personal reference, the processing is carried out in accordance with our legitimate interest in effective customer service and the statistical analysis of user behavior for optimization purposes. The legal basis for this data processing is your consent pursuant to Article 6 (1) sentence 1 lit. a GDPR.

Application Form
When contacting us using the application form, personal information is collected. Which information is collected can be seen from the application form. This information is stored and used exclusively for the purpose of responding to your request or for contacting you and the associated technical administration. Your information will be deleted after final processing of your request, this is the case if it can be inferred from the circumstances that the matter concerned has been conclusively clarified and provided that there are no statutory retention obligations to the contrary.

Contractual and Association work
We process the data of our clients, supporters, interested parties, business partners or other persons if we have a membership or other business relationship with them and, as a result, perform our tasks and are recipients of services and benefits.

We also process your data on the basis of our legitimate interests, e.g., when administrative tasks or public relations work are involved.

The data processed in this way, the type, scope and purpose and the necessity of its processing, are determined by the membership or contractual relationship concluded with you, which also determines the necessity of any data disclosures (we will of course explicitly point this out to you).

We delete data that is no longer required to fulfil our statutory and business purposes. This is determined according to the respective tasks and contractual relationships. The retention period of your data is determined according to how it may be relevant for business processing, as well as with regard to any warranty or liability obligations based on our legitimate interests in regulating them. We continuously review the necessity of retaining the data. The statutory retention obligations always apply.

Review 
Within the Review section, you may be able to display certain personal information, share certain details, engage with others, exchange knowledge and insights, post and view relevant comment. Comment and data are publicly viewable. You have choices about the information on your comment. You don’t have to provide additional information on your comment; however, comment information helps you to get more from our Services. It’s your choice whether to include sensitive information in your comment and to make that sensitive information public. Please do not post or add personal information in your comment that you would not want to be available.

Google Map API
Our website accesses the map service Google Maps via an API. To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. We have no influence on this data transmission. Google Maps is used in the interest of a user-friendly presentation of our online offers, in order to user-friendly presentation of our online offer. The legal basis is consent in accordance with Art. 6 (1) (a) GDPR.

Deletion and blocking of personal information
We process and store your personal information only for the period of time necessary to achieve the purpose of storage. The criterion for the duration of the storage of personal information is therefore the respective statutory retention period.

If the purpose for which the data is stored no longer applies, the personal information will be routinely blocked or deleted in accordance with the statutory provisions, provided that they are no longer required for the performance of the contract or the initiation of the contract.

Wix
We use the services of the homepage provider Wix.com Ltd, Namal 40, 6350671 Tel Aviv, Israel. Hereinafter referred to as "wix.com". The registered office in Europe: Wix.com Luxembourg S.a.r.l., 5 Rue Guillaume Kroll, L - 1882 Luxembourg. Wix.com collects two types of data: personal information (which can be used to uniquely identify an individual) and non-personal information (which is not used for identification purposes). Wix.com collects such information about our users and visitors, as well as users of users and others who provide it to us. Wix.com may also collect, solely for and in the interest of our users, similar data related to visitors and users of our users' web sites or services. Wix.com collects and uses data to provide our services and make them better and safer, as well as to contact our visitors, users and job applicants, and to comply with legal requirements applicable to Wix.com.

Wix.com may store and process personal information in the United States, Europe, Israel or other jurisdictions - either itself or through our affiliated companies and service providers. The data storage providers with whom Wix.com works are contractually obligated to protect your data. Wix.com may also collect, process and store such data in other locations, including the United States.

Wix may collect and process data about our users. We do so solely on behalf of and at the direction of our users. Our users are solely responsible for their users of user’s data, including for its legality, security and integrity. Wix has no direct relationship with users of users.

We may share the data of our visitors, users and their users of users with various third parties, including certain service providers, law enforcement agencies and application developers. In doing so, the data may only be shared in accordance with this policy. 

Obligation to provide personal information
We inform you that the provision of personal information is partly required by law (e.g., tax regulations) or may also result from contractual regulations (e.g., information on the contractual partner). Furthermore, in order to conclude a contract, it may be necessary for you to provide us with personal information that subsequently has to be processed by us. For example, you are obliged to provide us with personal information if our company concludes a contract with you. Failure to provide the personal information would mean that the contract could not be concluded.

Before providing us with your personal information, you should contact one of our employees. Our employee will explain to you on a case-by-case basis whether the provision of your personal information is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal information and what the consequences would be of not providing the personal information.

Data Breaches/Notification
Databases or data sets that include Personal information may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, we will notify all affected individuals whose Personal information may have been compromised, and the notice will be accompanied by a description of action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.

Data security
ZSP Finance takes technical and organizational measures to protect your personal information against accidental or intentional manipulation, falsification, loss, destruction, or access by unauthorized persons. These measures are continuously adapted, improved, or extended in line with technological developments. Access to your personal information is limited to the employees required to fulfil the purpose.

Questions regarding data protection and contact persons
Our staff is available to answer questions regarding the processing of your personal information, requests for information, suggestions, for exercising your rights and for complaints. If you have any questions or suggestions on the subject of data protection, please send an email directly to us.