Menu
Account

GDPR Compliance Policy 

 

At Yugalinks Global Connect Pvt Ltd, we are committed to protecting the personal data of our users and ensuring compliance with the General Data Protection Regulation (GDPR) for all EU-based users. This policy outlines our approach to data protection, the rights of users under GDPR, and how we safeguard personal data. 

 

Policy Commitment

We uphold the principles of transparency, fairness, and accountability in handling personal data. Our systems and processes are designed to ensure compliance with GDPR and protect user privacy.

Scope of the Policy

This policy applies to all EU-based users interacting with Yugalinks Global Connect Pvt Ltd and covers:

  • Personal data collection, processing, and storage
  • Data transfer and sharing
  • User rights under GDPR

Lawful Basis for Data Processing

We process personal data based on the following legal grounds:

  • Consent: When users provide explicit consent for specific data uses
  • Contractual Necessity: To fulfill service obligations and user requests
  • Legal Obligation: Compliance with legal and regulatory requirements
  • Legitimate Interests: To improve services while respecting user privacy

Personal Data We Collect

We only collect and process personal data required to deliver our services, including:

  • User identification information (name, contact details)
  • Business information (company details, tax identification numbers)
  • Transaction data (orders, payments)
  • Communication records (customer support interactions)

Data Protection Measures

We implement stringent technical and organizational safeguards to protect personal data:

  • Encryption: Data is encrypted in transit and at rest
  • Access Control: Strict access control policies restrict data access to authorized personnel
  • Data Minimization: Only essential data is collected and processed

Data Subject Rights Under GDPR

EU-based users have the following rights regarding their personal data:

  • Right to Access: Request access to personal data we hold
  • Right to Rectification: Correct inaccuracies in personal data
  • Right to Erasure: Request deletion of personal data under specific conditions
  • Right to Restriction: Limit the processing of personal data
  • Right to Data Portability: Receive data in a structured format for transfer
  • Right to Object: Object to the processing of personal data for certain purposes

Data Transfers and International Compliance

Personal data may be transferred outside the EU to countries with adequate protection measures. We ensure all international transfers comply with GDPR through:

  • Standard Contractual Clauses (SCCs)
  • Data Processing Agreements (DPAs)
  • Adequacy decisions from the European Commission

Data Retention Policy

We retain personal data only for the period necessary to fulfill service and legal obligations. Data is securely deleted once the retention period ends, as outlined in our Data Retention Policy.

Data Breach Notification

In the event of a personal data breach, we will:

  • Notify affected users and regulatory authorities promptly
  • Take immediate corrective action to mitigate risks