GDPR Compliance

At Velara, we are committed to protecting and respecting your privacy and data protection rights. This page outlines our compliance with the General Data Protection Regulation (GDPR), which is a European Union regulation that strengthens and unifies data protection for all individuals within the EU and addresses the export of personal data outside the EU.

Our Commitment to GDPR

We have implemented appropriate technical and organizational measures to ensure that our processing of personal data complies with GDPR. This includes:

• Obtaining consent for processing personal data where required
• Processing personal data lawfully, fairly, and transparently
• Collecting personal data only for specified, explicit, and legitimate purposes
• Ensuring personal data is adequate, relevant, and limited to what is necessary
• Keeping personal data accurate and up to date
• Storing personal data for no longer than necessary
• Implementing appropriate security measures to protect personal data

Your Rights Under GDPR

If you are an EU resident, the GDPR provides you with several rights regarding your personal data. These include:

Right to Information

You have the right to be informed about how we process your personal data. This includes information about the purpose of processing, categories of personal data processed, recipients of your data, and our data retention policy.

Right to Access

You have the right to access your personal data and receive a copy of the personal data we hold about you, as well as other supplementary information. This helps you understand how and why we are using your data and check we are doing it lawfully.

Right to Rectification

You have the right to have inaccurate personal data rectified, or completed if it is incomplete. You can request this directly or via your account settings where applicable.

Right to Erasure

Also known as 'the right to be forgotten', you have the right to request the deletion or removal of your personal data where there is no compelling reason for its continued processing.

Right to Restrict Processing

You have the right to request the restriction or suppression of your personal data. When processing is restricted, we may store your data but not use it.

Right to Data Portability

You have the right to obtain and reuse your personal data for your own purposes across different services. This allows you to move, copy, or transfer your data easily from one IT environment to another in a safe and secure way.

Right to Object

You have the right to object to the processing of your personal data in certain circumstances, including processing for direct marketing or processing based on legitimate interests.

Rights Related to Automated Decision Making and Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for ensuring our organization's compliance with GDPR and other data protection laws. If you have any questions or concerns about how we process your personal data, you can contact our DPO at:

dpo@velara.io

Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.

Contact Us

To exercise any of your rights under GDPR or if you have any questions about our GDPR compliance, please contact us at:

gdpr@velara.io