GDPR Compliance

We ensure that all processing of personal data is based on a lawful basis as outlined in the GDPR. This includes obtaining explicit consent where required and ensuring that any processing activities are necessary for the performance of a contract, compliance with legal obligations, or other legitimate interests.

We are transparent about how we collect, use, and process personal data. Our Privacy Policy outlines the purposes for which we collect data, the legal basis for processing, and your rights regarding your personal information. We also maintain comprehensive records of our data processing activities to demonstrate accountability.

We only collect and process personal data that is necessary for the purposes for which it is being processed. We do not retain personal data for longer than is necessary and take measures to ensure that data is accurate, up-to-date, and relevant to the purposes for which it was collected.

We respect your rights regarding your personal data and provide mechanisms for you to exercise those rights. This includes the right to access, rectify, erase, restrict processing, and object to the processing of your personal data. We also provide tools for data portability, allowing you to obtain and reuse your personal data for your own purposes.

We implement appropriate technical and organizational measures to ensure the security of your personal data and protect it from unauthorized access, disclosure, alteration, or destruction. This includes encryption, access controls, and regular security audits and assessments.

If we transfer personal data outside the European Economic Area (EEA), we ensure that adequate safeguards are in place to protect the data, such as standard contractual clauses or adherence to approved certification mechanisms.