GDPR Compliance
Our commitment to protecting your data under the General Data Protection Regulation.
Last Updated: May 15, 2025
1. Our Commitment to GDPR
APPRIQA is committed to ensuring compliance with the General Data Protection Regulation (EU) 2016/679 ("GDPR"). We take the protection of personal data seriously and have implemented appropriate technical and organizational measures to safeguard the personal data of our users, clients, and partners within the European Economic Area (EEA).
2. Lawful Basis for Processing
We process personal data only when we have a lawful basis to do so. The legal bases we rely on include:
- Consent: You have given clear, informed consent for us to process your personal data for specific purposes (e.g., marketing emails)
- Contract: Processing is necessary to fulfill a contract with you or to take steps before entering a contract
- Legitimate Interests: Processing is necessary for our legitimate business interests, provided those interests are not overridden by your rights
- Legal Obligation: Processing is necessary to comply with a legal obligation
3. Your Rights Under GDPR
As a data subject within the EEA, you have the following rights:
Right of Access
You can request a copy of the personal data we hold about you, along with information about how it is processed.
Right to Rectification
You can request correction of any inaccurate or incomplete personal data we hold about you.
Right to Erasure
You can request deletion of your personal data when there is no compelling reason for continued processing.
Right to Restriction
You can request that we restrict processing of your data in certain circumstances.
Right to Portability
You can request to receive your data in a structured, commonly used format and transfer it to another controller.
Right to Object
You can object to processing based on legitimate interests, including profiling and direct marketing.
To exercise any of these rights, please contact our Data Protection Officer at dpo@APPRIQA.com. We will respond within 30 days.
4. Data Processing Activities
We maintain a comprehensive record of our data processing activities, including:
- Categories of data subjects and personal data processed
- Purposes of processing
- Categories of recipients
- Transfers to third countries (with appropriate safeguards)
- Retention periods
- Technical and organizational security measures
5. International Data Transfers
When we transfer personal data outside the EEA, we ensure adequate protection through:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Transfers to countries with an adequacy decision
- Binding Corporate Rules where applicable
6. Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our data protection strategy and ensuring compliance with GDPR requirements.
DPO Contact: dpo@APPRIQA.com
General: privacy@APPRIQA.com
Company: APPRIQA Digital Solutions
7. Data Breach Notification
In the event of a personal data breach, APPRIQA will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by Article 33 of the GDPR. Where the breach is likely to result in a high risk to individuals' rights and freedoms, we will also notify affected data subjects without undue delay.
8. Complaints
If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. You can also contact us directly, and we will do our best to resolve your concerns.