Compliance
GDPR Compliance
General Data Protection Regulation (GDPR) is a European Union regulation designed to protect individuals’ personal data and privacy. Numecent is committed to ensuring our practices comply with GDPR and safeguard user data.
Numecent GDPR Compliance Measures
Data Collection
Only necessary data is collected and securely stored, with strict policies, procedures, and controls in place to adhere to GDPR standards.
Lawful Basis
We process personal data in strict compliance with the General Data Protection Regulation (GDPR). Each instance of data processing is based on a lawful basis as defined under GDPR to ensure transparency, fairness, and accountability.
The lawful bases we rely on include:
1. Consent
We obtain explicit consent from individuals before collecting and processing their personal data, whenever required. For example, we ask for your permission to send marketing communications or newsletters.
2. Contractual Necessity
When processing is necessary for the performance of a contract, or to take steps at your request before entering into a contract, we process only the data essential to fulfilling those obligations.
3. Legal Obligation
In certain cases, we are legally required to process personal data to comply with laws and regulations, such as tax compliance or responding to regulatory authorities.
4. Legitimate Interests
Where processing is necessary for our legitimate business interests (e.g., fraud prevention, improving our services), we ensure these interests do not override your fundamental rights and freedoms.
Transparency on How Data is Handled
Numecent is committed to full transparency around GDPR controls and how data is handled. You can view comprehensive details on Data Retention policies and more in our Privacy Policy at https://www.numecent.com/privacy-policy/.
Access and Portability
You can request access to the personal data we hold about you at any time. Upon verification of your identity, we will provide a copy of your data, along with details on how it is being processed, the purposes for processing, and any third parties it has been shared with.
You also have the right to receive your personal data in a structured, commonly used, and machine-readable format. If technically feasible, we can also transfer this data directly to another organization at your request.
Third-Party Compliance
We recognize that our commitment to GDPR compliance extends beyond our internal processes to include the third-party vendors and service providers we work with. To ensure the protection of your personal data at every stage, we implement the following measures:
Vendor Assessment: We conduct rigorous due diligence to evaluate the GDPR compliance practices of all third-party vendors and partners before engagement.
Data Processing Agreements: We establish legally binding Data Processing Agreements with all third-party processors to ensure they uphold GDPR principles, including lawful data processing, security, and data subject rights.
Sub-Processor Transparency: We maintain a list of sub-processors involved in processing personal data and make it available to our customers upon request.
Limited Data Sharing: We share personal data with third parties only when necessary, and only for the purposes specified in our privacy policies, ensuring a lawful basis for all data transfers.
Legal Disclaimer
This page is a declaration of Numecent practices. This page is not a substitute for legal advice.
Additional Information
For any questions about our GDPR compliance or to exercise your rights, please contact us using the form below: