GDPR Compliance

    General Data Protection Regulation Compliance Statement

    Our Commitment to Data Protection

    We are committed to protecting your personal data and respecting your privacy rights under the European Union's General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements.

    Your Rights Under GDPR

    As a data subject, you have the following rights:

    1. Right to Access

    You can request a copy of all personal data we hold about you, including how we use it and who we share it with.

    2. Right to Rectification

    You can request correction of inaccurate or incomplete personal data.

    3. Right to Erasure (Right to be Forgotten)

    You can request deletion of your personal data when it's no longer necessary for the purpose it was collected.

    4. Right to Restrict Processing

    You can request that we limit how we use your data in certain circumstances.

    5. Right to Data Portability

    You can request a copy of your data in a structured, commonly used, machine-readable format.

    6. Right to Object

    You can object to processing of your data for direct marketing or other legitimate interests.

    7. Right to Withdraw Consent

    You can withdraw consent for data processing at any time (where processing is based on consent).

    8. Right to Lodge a Complaint

    You can lodge a complaint with your local data protection authority if you believe we've violated your rights.

    How to Exercise Your Rights

    To exercise any of your GDPR rights:

    1. Send an email to privacy@autolistai.com with subject "GDPR Request"
    2. Include your account email and specify which right you wish to exercise
    3. We will verify your identity for security purposes
    4. We will respond within 30 days (as required by GDPR)
    5. There is no charge for exercising your rights

    Our GDPR Compliance Measures

    ✓ Lawful Processing

    We only process data based on legal grounds (consent, contract, legitimate interest, legal obligation).

    ✓ Data Minimization

    We only collect data that's necessary for providing our service.

    ✓ Purpose Limitation

    Data is only used for the purposes we told you about when collecting it.

    ✓ Storage Limitation

    We don't keep data longer than necessary. Retention periods are documented.

    ✓ Security Measures

    Encryption, access controls, regular security audits, and incident response procedures.

    ✓ Data Processing Agreements

    All third-party processors have signed Data Processing Agreements (DPAs).

    ✓ Privacy by Design

    Privacy considerations are built into our platform from the ground up.

    ✓ Breach Notification

    We have procedures to detect, report, and investigate data breaches within 72 hours.

    Data Protection Officer (DPO)

    You can contact our Data Protection Officer for any GDPR-related questions:

    Email: dpo@autolistai.com
    Name: [TO BE COMPLETED]
    Address: [TO BE COMPLETED]

    Supervisory Authority

    If you're not satisfied with our response, you have the right to lodge a complaint with your local supervisory authority:

    For EU residents: Find your local Data Protection Authority at EDPB Member List

    International Data Transfers

    We use service providers that may be located outside the EU. We ensure appropriate safeguards through:

    • Standard Contractual Clauses (SCCs)
    • Adequacy decisions by the European Commission
    • Binding Corporate Rules where applicable

    Related Documentation

    For more detailed information:

    Updates to GDPR Compliance

    We regularly review and update our GDPR compliance measures. Any material changes will be communicated via email and updated on this page.

    ← Back to Home