gyanbridge logo

GDPR Compliance

Understanding your data protection rights under the General Data Protection Regulation (GDPR).

Last updated: December 15, 2024

GDPR and Your Privacy Rights

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that gives individuals in the European Union enhanced control over their personal data. At GyanBridge, we are committed to full GDPR compliance and protecting your privacy rights.

This page explains your rights under GDPR, how we protect your data, and how you can exercise your rights. These rights apply to all individuals in the EU/EEA, regardless of nationality.

Your Rights Under GDPR

Right to Information

You have the right to be informed about how we collect, use, and process your personal data. This includes the purposes, legal basis, retention periods, and your rights regarding your data.

Right of Access

You can request access to your personal data and receive information about how we process it. We will provide you with a copy of your data in a commonly used electronic format.

Right to Rectification

You have the right to have inaccurate personal data corrected and incomplete data completed. You can update most of your information through your account settings.

Right to Erasure

Also known as the 'right to be forgotten', you can request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the original purpose.

Data Processing Rights

Right to Restrict Processing

You can request that we restrict the processing of your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.

Right to Object

You can object to the processing of your personal data for direct marketing purposes or when processing is based on legitimate interests or public interest.

Rights Related to Automated Decision Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or significant effects.

Legal Basis for Processing

Consent

We process your data based on your explicit consent for specific purposes, such as marketing communications. You can withdraw consent at any time.

Contract Performance

We process data necessary to perform our contract with you, such as providing access to courses and processing payments.

Legal Obligation

We may process data to comply with legal obligations, such as tax requirements or responding to lawful requests from authorities.

Legitimate Interest

We process data for legitimate business interests, such as improving our services, security, and fraud prevention, while ensuring your rights are protected.

Data Protection Measures

Technical Safeguards

We implement appropriate technical measures including encryption, access controls, and secure data transmission to protect your personal data.

Organizational Measures

We have established policies, procedures, and training programs to ensure our staff handle personal data appropriately and in compliance with GDPR.

Data Minimization

We only collect and process personal data that is necessary for the specified purposes and retain it only for as long as required.

Privacy by Design

We incorporate data protection principles into our systems and processes from the design stage, ensuring privacy is built into our services.

International Data Transfers

Transfer Mechanisms

When we transfer your data outside the EU/EEA, we use appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

Third-Party Processors

We ensure that any third-party processors we work with provide adequate protection for your personal data and comply with GDPR requirements.

Data Processing Agreements

We have data processing agreements in place with all our processors that include appropriate technical and organizational measures.

Exercising Your Rights

How to Make a Request

You can exercise your rights by contacting our Data Protection Officer or using the contact information provided below. We may need to verify your identity before processing requests.

Response Time

We will respond to your requests within one month of receipt. In complex cases, we may extend this period by two additional months and will inform you of any delay.

No Cost

Exercising your rights is generally free of charge. However, we may charge a reasonable fee for manifestly unfounded or excessive requests.

Right to Complain

If you're not satisfied with how we handle your request, you have the right to lodge a complaint with your local data protection authority.

Quick Actions

Download Data

Request a copy of your personal data

Access Data

View what data we have about you

Update Data

Correct or update your information

Delete Data

Request deletion of your data

Contact Our Data Protection Officer

Data Protection Officer

Email: dpo@GyanBridge.com

Phone: +1 (555) 123-4567

Response time: Within 72 hours

EU Representative

GyanBridge EU Representative
Privacy Solutions Ltd.
123 Privacy Street
Dublin, Ireland

Our Data Protection Officer is available to help you understand your rights, process your requests, and address any concerns about how we handle your personal data under GDPR.

Right to Lodge a Complaint

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority. You can find your local authority at:

https://edpb.europa.eu/about-edpb/board/members_en