Information about our compliance with the General Data Protection Regulation (GDPR).
1. GDPR Overview
The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. Lumora Cloud is committed to ensuring compliance with GDPR requirements and respecting your data privacy rights.
2. Legal Basis for Processing
We process personal data only when we have a legal basis to do so. This may include when you have given us consent to process your data for a specific purpose, when the processing is necessary for the performance of a contract, when the processing is necessary for compliance with a legal obligation, or when the processing is necessary for the legitimate interests pursued by Lumora Cloud.
3. Data Subject Rights
Under the GDPR, you have several rights regarding your personal data: the right to access your data, the right to rectification, the right to erasure, the right to restrict processing, the right to data portability, the right to object to processing, and rights related to automated decision making and profiling.
4. Data Protection Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption of personal data, the ability to ensure ongoing confidentiality, integrity, availability, and resilience of processing systems, and regular testing of the effectiveness of our security measures.
5. International Data Transfers
If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data. This may include using standard contractual clauses approved by the European Commission, binding corporate rules for transfers within Lumora Cloud's group of companies, or other legally acceptable mechanisms.
6. Data Breach Notification
In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible, unless the breach is unlikely to result in a risk to your rights and freedoms. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.
7. Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact our DPO at hello@lumora.cloud.
8. Contact Us
If you have any questions about our GDPR compliance, please contact us at hello@lumora.cloud or through the contact form on our website.