GDPR Compliance Statement

Last updated: September 2024

1. Introduction

This GDPR Compliance Statement explains how Cirkli Corp processes personal data in accordance with the General Data Protection Regulation (GDPR).

2. Legal Basis for Processing

We process personal data under the following legal bases:

• Consent: When you explicitly agree to the processing of your personal data
• Contract: When processing is necessary for the performance of a contract
• Legitimate Interests: When processing is necessary for our legitimate interests
• Legal Obligation: When processing is necessary to comply with legal obligations

3. Your Rights Under GDPR

Under GDPR, you have the following rights:

• Right to be informed about the collection and use of your personal data
• Right to access your personal data
• Right to rectification of inaccurate personal data
• Right to erasure of your personal data
• Right to restrict processing of your personal data
• Right to data portability
• Right to object to processing of your personal data
• Rights related to automated decision-making and profiling

4. Data Protection Measures

We implement appropriate technical and organizational measures to ensure security of personal data, including:

• Encryption of personal data
• Regular security assessments
• Access controls and authentication
• Staff training on data protection

5. International Transfers

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place through:

• Standard contractual clauses
• Adequacy decisions by the European Commission
• Other appropriate safeguards as required by GDPR

6. Contact Information

For any GDPR-related inquiries, contact our Data Protection Officer at:

Email: [email protected]