GDPR Compliance
Your data protection rights and our commitment to GDPR compliance.
GDPR Overview
Last updated: March 15, 2024
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that applies to organizations operating within the European Union and those that offer goods or services to EU residents. At BEMYTE, we are committed to full GDPR compliance and protecting your data protection rights.
Your GDPR Rights
Right to Access
You have the right to request access to your personal data and receive information about how we process it.
Right to Rectification
You have the right to request correction of inaccurate or incomplete personal data.
Right to Erasure
You have the right to request deletion of your personal data in certain circumstances.
Right to Restrict Processing
You have the right to request restriction of processing your personal data in certain situations.
Right to Data Portability
You have the right to receive your personal data in a structured, machine-readable format.
Right to Object
You have the right to object to processing of your personal data for certain purposes.
Our Compliance Measures
Data Protection by Design
We implement privacy and data protection measures from the initial design stage of our systems and processes.
Data Minimization
We only collect and process personal data that is necessary for the specified purposes.
Consent Management
We obtain clear, informed consent for data processing and provide easy ways to withdraw consent.
Data Security
We implement appropriate technical and organizational measures to protect personal data.
Regular Audits
We conduct regular assessments of our data processing activities and compliance measures.
Staff Training
We provide regular training to our staff on data protection and privacy requirements.
Legal Basis for Data Processing
Consent
You have given clear consent for us to process your personal data for specific purposes.
Examples:
- Marketing communications
- Analytics cookies
- Third-party integrations
Contract Performance
Processing is necessary to perform our contract with you or to take steps at your request.
Examples:
- Account creation
- Service delivery
- Payment processing
Legitimate Interest
Processing is necessary for our legitimate interests, provided these interests don't override your rights.
Examples:
- Fraud prevention
- Service improvement
- Security measures
Legal Obligation
Processing is necessary to comply with legal obligations we are subject to.
Examples:
- Tax reporting
- Regulatory compliance
- Legal proceedings
Data Protection Officer
Contact Information
We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance and handle data protection matters.
Email: dpo@bemyte.com
Address: BEMYTE, Inc.
Attn: Data Protection Officer
San Francisco, CA 94105
United States
DPO Responsibilities
- Monitor GDPR compliance
- Handle data subject requests
- Provide guidance on data protection
- Conduct privacy impact assessments
International Data Transfers
As a global platform, BEMYTE may transfer your personal data to countries outside the European Economic Area (EEA). We ensure that such transfers comply with GDPR requirements through appropriate safeguards.
Safeguards We Use:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Binding corporate rules
Your Rights:
- Request information about transfers
- Object to specific transfers
- Request additional safeguards
Exercise Your GDPR Rights
Ready to exercise your GDPR rights? Contact our Data Protection Officer or use our self-service tools to manage your data.