Our Commitment to GDPR
WebTrackly is committed to compliance with the General Data Protection Regulation (GDPR). This page outlines how we protect your rights as a data subject and ensure the lawful processing of personal data.
Legal Basis for Processing
We process personal data based on the following legal grounds:
- Contract: Processing necessary for the performance of our services
- Legitimate Interests: Processing for business operations and service improvements
- Consent: Where you have given explicit consent for specific processing
- Legal Obligation: Where processing is required by law
Your Rights Under GDPR
As a data subject, you have the following rights:
You have the right to obtain confirmation whether we process your personal data and access to that data.
You can request correction of inaccurate personal data or completion of incomplete data.
You can request deletion of your personal data when it's no longer necessary for the purposes collected.
You can receive your personal data in a structured, commonly used, and machine-readable format.
You can object to processing of your personal data based on legitimate interests or for direct marketing.
Data Protection Measures
We implement appropriate technical and organizational measures:
- Encryption of data in transit and at rest
- Regular security assessments and audits
- Access controls and authentication
- Staff training on data protection
- Data minimization principles
- Privacy by design and by default
Data Transfers
When we transfer personal data outside the EU/EEA, we ensure appropriate safeguards:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions by the European Commission
- Other approved transfer mechanisms
Data Retention
We retain personal data only as long as necessary:
- Account data: Duration of account activity plus legal retention period
- Transaction data: As required by tax and accounting regulations
- Marketing data: Until consent is withdrawn
- Log data: Maximum 90 days for security purposes
Data Breach Procedures
In case of a data breach:
- We will notify supervisory authorities within 72 hours
- Affected individuals will be informed without undue delay
- We maintain breach records and documentation
- We implement measures to prevent future breaches
Exercising Your Rights
To exercise any of your GDPR rights:
- Contact our Data Protection Officer
- Provide proof of identity
- Specify which right you wish to exercise
- We will respond within one month
Contact Our DPO
For any GDPR-related queries or to exercise your rights:
Data Protection Officer
Email: dpo@webtrackly.com
Address: [Your Company Address]
Supervisory Authority
You have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated. Contact details for EU data protection authorities can be found on the European Data Protection Board website.