C
ClaudBricks
Back to Home

GDPR Compliance

Last updated: August 1, 2024

ClaudBricks Training and Solution is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). This page outlines our compliance measures and your rights.

What is GDPR?

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. It applies to all organizations that process personal data of EU residents, regardless of where the organization is located.

Your GDPR Rights

Right to Access

Request a copy of your personal data we hold

Right to Rectification

We use "cookies" and similar tracking technologies to collect and use personal information about you. For further information about the types of cookies we use, please refer to our Cookie Policy.

Right to Erasure

Request deletion of your personal data ("right to be forgotten")

Right to Portability

Receive your data in a structured, machine-readable format

Right to Restrict Processing

Limit how we process your personal data

Right to Object

Object to processing for marketing or legitimate interests

How We Comply with GDPR

Lawful Basis for Processing

  • Consent: For marketing communications and non-essential cookies
  • Contract: To provide our services and fulfill agreements
  • Legitimate Interest: For website analytics and business operations
  • Legal Obligation: To comply with tax and legal requirements

Data Protection Measures

  • Data encryption in transit and at rest (via Supabase)
  • Regular security audits and vulnerability assessments
  • Data minimization and purpose limitation
  • Regular data retention reviews
  • Secure third-party data processing agreements

Data Retention

We retain personal data only as long as necessary for the purposes outlined in our Privacy Policy:

  • Client data: For the duration of the business relationship plus 7 years for legal/tax purposes
  • Marketing data: Until consent is withdrawn or 3 years of inactivity
  • Website analytics: 26 months (Google Analytics default)
  • Support tickets: 3 years after resolution

International Data Transfers

As a small entity based in India, we may transfer personal data outside the EU/EEA through our service providers. When we do, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs) with our data processors
  • Adequacy decisions for certain countries
  • Secure third-party service agreements (Supabase, Google, Facebook)
  • Regular compliance reviews of our data processors

Data Breach Notification

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will:

  • Notify the relevant supervisory authority within 72 hours
  • Inform affected individuals without undue delay
  • Provide clear information about the breach and our response
  • Take immediate steps to contain and remedy the breach

Exercising Your Rights

To exercise any of your GDPR rights, please contact us directly (as a small entity, we handle data protection inquiries personally):

Email: info@claudbricks.com

Address: PLO. NO 50, BAJARANG SOCIETY, BEHIND RAJSARATHI, INDIRANAGAR, 422009 NASHIK

Business Name: ClaudBricks Training and Solution

Response Time: We will respond within 30 days

We may need to verify your identity before processing your request. If you're not satisfied with our response, you have the right to lodge a complaint with your local supervisory authority.

Supervisory Authority

You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA). We would, however, appreciate the chance to deal with your concerns before you approach the data protection authority so please contact us in the first instance.

ICO Website: ico.org.uk

ICO Helpline: 0303 123 1113