Privacy Policy

Introduction

Topoptin is committed to protecting the privacy of personal data we collect and process, in accordance with the General Data Protection Regulation (GDPR).

Scope

This GDPR compliance document applies to all personal data collected and processed by Topoptin, including data collected from customers, employees, and third-party vendors.

Data Protection Officer

Topoptin has appointed a Data Protection Officer (DPO) who is responsible for overseeing GDPR compliance within the organization. Any questions or concerns regarding GDPR compliance should be directed to the DPO.

Lawful Basis for Processing

Topoptin processes personal data on the basis of legitimate interest, contractual necessity, and consent. We will obtain explicit consent from data subjects for any processing activities that require it.

Transparency

Topoptin provides clear and concise information to data subjects about how their data is being used, including the purposes of processing and how long the data will be stored. This information is provided through our Privacy Policy, which is easily accessible on our website.

Data Subject Rights

Topoptin respects the rights of data subjects under the GDPR, including the right to access, rectify, erase, and port personal data. To exercise these rights, data subjects can contact Topoptin's DPO, who will respond to requests within the required timeframes outlined by the GDPR.

Data Security

Topoptin takes appropriate technical and organizational measures to ensure the security of personal data we collect and process. We have implemented measures to prevent unauthorized access, disclosure, alteration, or destruction of personal data.

Third-Party Data Processors

Topoptin may engage third-party data processors to assist with processing personal data. We will ensure that these processors are compliant with the GDPR and have appropriate measures in place to protect personal data.

Data Breach Notification

In the event of a data breach, Topoptin will notify affected data subjects and the relevant supervisory authority within 72 hours of becoming aware of the breach, in accordance with GDPR requirements.

Conclusion

Topoptin is committed to GDPR compliance and protecting the privacy of personal data we collect and process. We will continue to review and improve our policies and procedures to ensure compliance with GDPR requirements.