GDPR Compliance

Introduction

At RapidDesk, we are committed to protecting your personal data and respecting your privacy rights under the General Data Protection Regulation (GDPR). This page explains how we process your data, what rights you have, and how you can exercise them.

Your Rights Under GDPR

• Right to Access - You can request a copy of your personal data and information about how we process it.
• Right to Rectification - You can request corrections to your personal data if it is inaccurate or incomplete.
• Right to Erasure - You can request deletion of your personal data in certain circumstances.
• Right to Restrict Processing - You can request limits on how we process your data.
• Right to Data Portability - You can request your data in a structured, commonly used format and transmit it to another controller.
• Right to Object - You can object to processing of your personal data in certain circumstances.

How We Process Your Data

We process personal data only when we have a lawful basis to do so under GDPR Article 6. The main legal bases we rely on are:

• Contract performance
• Legal obligations
• Legitimate interests
• Consent

Data Protection Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

• Encryption of personal data
• Regular security assessments
• Access controls and authentication
• Data backup and recovery procedures
• Staff training on data protection

International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place through:

• Standard contractual clauses
• Adequacy decisions
• Binding corporate rules

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. When data is no longer needed, it is securely deleted or anonymized.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact our DPO using the details below:

Complaints

You have the right to make a complaint at any time to your local supervisory authority for data protection issues. However, we would appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.

Updates to This Notice

We may update this GDPR compliance notice from time to time. The latest version will always be available on our website. We will notify you of any significant changes.