GDPR Compliance

    We built eboks.cc with GDPR compliance as a core requirement, not an afterthought. Here's how we respect and protect your data rights under European privacy law.

    Your GDPR Rights, Simplified

    Right to Access

    You can request a copy of all personal data we hold about you, which we'll provide in a machine-readable format within 30 days.

    How to use it: Visit your account settings → Privacy → "Download my data"

    Right to Rectification

    If your personal information is incorrect, you can update it at any time.

    How to use it: Visit your account settings → Profile → Edit your information

    Right to Erasure

    You can delete your account and all associated personal data at any time.

    How to use it: Visit your account settings → Privacy → "Delete my account"

    Right to Restriction

    You can temporarily block us from processing your data while still using basic services.

    How to use it: Visit your account settings → Privacy → "Restrict processing"

    Right to Object

    You can opt out of specific data processing activities like analytics.

    How to use it: Visit your account settings → Privacy → "Processing preferences"

    Data Portability

    Export your data in a format that can be easily transferred to another service.

    How to use it: Visit your account settings → Privacy → "Export my data"

    Our Data Processing Practices

    Legal Basis for Processing

    We process your data based on one or more of the following legal grounds:

    • Contract fulfillment: Processing necessary to provide our service to you
    • Legitimate interest: Processing that benefits you and us (like service improvements)
    • Consent: Processing based on your explicit permission
    • Legal obligation: Processing required by law

    International Data Transfers

    We keep your data within the EU/EEA whenever possible. If we need to transfer data outside these regions, we ensure equivalent protection through mechanisms like:

    • EU Standard Contractual Clauses
    • Privacy Shield certification (for US partners)
    • Data processing agreements with all third-party processors

    Data Protection Impact Assessments

    Before implementing new features or technologies, we conduct thorough assessments of potential privacy impacts to ensure your rights are protected.

    Data Breach Protocol

    In the unlikely event of a data breach affecting your personal information, we will:

    • Notify relevant supervisory authorities within 72 hours
    • Inform affected users promptly with detailed information
    • Take immediate steps to mitigate any potential harm

    Data Protection Officer

    Our dedicated Data Protection Officer ensures we maintain the highest standards of data privacy and can address any GDPR-related questions or concerns.

    Email: dpo@eboks.cc