GDPR Compliance
Your data rights under the General Data Protection Regulation and our commitment to protecting your privacy.
What is GDPR?
The General Data Protection Regulation (GDPR) is a comprehensive privacy law that came into effect on May 25, 2018. It strengthens and unifies data protection for individuals within the European Union and regulates how organizations collect, process, and store personal data.
GDPR Core Principles
GDPR Compliant
Aryasol is committed to full GDPR compliance and protecting your data rights.
May 25, 2018
Your Rights Under GDPR
As a data subject, you have specific rights regarding your personal data. Here's what each right means and how you can exercise them:
Right to be Informed
You have the right to be informed about the collection and use of your personal data.
What You Can Do:
- Clear privacy policies and notices
- Transparent data collection practices
- Information about data usage purposes
Right of Access
You have the right to access your personal data and supplementary information.
What You Can Do:
- Request a copy of your personal data
- Confirm whether we process your data
- Access to data processing details
Right to Rectification
You have the right to have inaccurate personal data rectified or completed if incomplete.
What You Can Do:
- Correct inaccurate personal information
- Update incomplete data
- Amend misleading information
Right to Erasure
You have the right to have personal data erased in certain circumstances.
What You Can Do:
- Request deletion of personal data
- Data removal when no longer necessary
- Erasure upon withdrawn consent
Right to Restrict Processing
You have the right to restrict the processing of your personal data in certain circumstances.
What You Can Do:
- Limit data processing activities
- Suspend data processing temporarily
- Restrict use while resolving disputes
Right to Data Portability
You have the right to obtain and reuse your personal data for your own purposes across different services.
What You Can Do:
- Receive data in structured format
- Transfer data to another service
- Machine-readable data export
Right to Object
You have the right to object to processing of your personal data in certain circumstances.
What You Can Do:
- Object to direct marketing
- Stop profiling for marketing
- Challenge legitimate interest processing
Rights Related to Automated Processing
You have rights in relation to automated decision making and profiling.
What You Can Do:
- Challenge automated decisions
- Request human intervention
- Contest profiling activities
How We Process Your Data
Under GDPR, we must have a legal basis for processing your personal data. Here's how we comply with GDPR requirements:
Legal Bases for Processing
Consent
You have given clear consent for us to process your data for specific purposes (e.g., marketing communications).
Contract Performance
Processing is necessary for the performance of a contract with you (e.g., providing digital marketing services).
Legal Obligation
Processing is necessary to comply with legal obligations (e.g., tax records, regulatory requirements).
Legitimate Interest
Processing is necessary for legitimate interests pursued by us or third parties (e.g., fraud prevention, direct marketing).
Categories of Personal Data
Identity Information
Name, username, date of birth, gender
Contact Information
Email address, phone number, postal address
Business Information
Company name, job title, business address
Technical Information
IP address, browser type, device information
Usage Information
Website interactions, preferences, behavior data
Marketing Information
Communication preferences, marketing responses
How to Exercise Your Rights
Exercising your GDPR rights is straightforward. You can contact us using any of the methods below, and we'll respond within one month as required by GDPR.
What to Include in Your Request
Identity Verification
Provide sufficient information to verify your identity (name, email, phone number)
Specific Request
Clearly state which right you want to exercise and any specific requirements
Relevant Details
Include any relevant details that help us process your request efficiently
Preferred Response
Let us know how you'd like to receive our response (email, phone, post)
International Data Transfers
When we transfer personal data outside the European Economic Area (EEA), we ensure adequate protection through appropriate safeguards as required by GDPR.
Adequacy Decisions
We transfer data to countries that have been deemed adequate by the European Commission.
Standard Contractual Clauses
We use EU-approved Standard Contractual Clauses (SCCs) for transfers to non-adequate countries.
Binding Corporate Rules
Our service providers may use Binding Corporate Rules approved by EU supervisory authorities.
Countries We Transfer Data To
Filing a Complaint
If you believe we haven't handled your personal data properly, you have the right to file a complaint with your local supervisory authority.
Before Filing a Complaint
- Contact us directly about your concerns
- Allow us time to resolve the issue
- Document your communications with us
- Gather relevant evidence