GDPR Compliance Statement

Last updated: February 10, 2024

Eight to Seven | Naveol is committed to protecting the privacy and personal data of our users in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Collection and Processing

We collect and process personal data only for specified, explicit, and legitimate purposes as outlined in our Privacy Policy. We ensure that personal data is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.

Legal Basis for Processing

We rely on the following legal bases for processing personal data:

1. Consent: We obtain explicit consent from individuals before collecting or processing their personal data for specific purposes.
2. Contractual Necessity: We process personal data to fulfill our contractual obligations to users.
3. Legal Compliance: We may process personal data to comply with legal obligations.
4. Legitimate Interests: We may process personal data based on our legitimate interests, provided that such processing does not override the fundamental rights and freedoms of individuals.

Data Subject Rights

Under the GDPR, individuals have the following rights regarding their personal data:

1. Right to Access: Individuals have the right to access their personal data and information about how it is processed.
2. Right to Rectification: Individuals can request the correction of inaccurate or incomplete personal data.
3. Right to Erasure: Individuals can request the deletion of their personal data under certain circumstances, also known as the “right to be forgotten.”
4. Right to Restriction of Processing: Individuals can request the restriction of processing of their personal data in certain situations.
5. Right to Data Portability: Individuals have the right to receive their personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
6. Right to Object: Individuals can object to the processing of their personal data in certain situations, including direct marketing.

Data Security Measures

We implement appropriate technical and organizational measures to ensure the security of personal data and protect it against unauthorized or unlawful processing and accidental loss, destruction, or damage.

Data Breach Notification

In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify affected users and the relevant supervisory authorities within the timeframes required by law.

Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) to oversee our data protection compliance efforts. You can contact our DPO at [DPO Contact Email].

Contact Us

If you have any questions or concerns about our GDPR compliance or the processing of your personal data, please contact us:

• By email:info@eighttoseven.com
• By visiting this page on our website: https://eighttoseven.com/contact-2/

Changes to this GDPR Compliance Statement

We may update our GDPR compliance statement from time to time. We will notify you of any changes by posting the new statement on this page