Vedeck Logo
Vedeck
Back to Home

GDPR Compliance

Last updated: May 26, 2025

1. Introduction

Vedeck is committed to protecting the privacy and security of your personal information in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This policy explains how we collect, use, and protect your personal data when you use our services.

Under GDPR, you have rights regarding your personal data. These include rights to access, correct, erase, restrict processing, and object to processing of your data.

2. Data Protection Principles

We adhere to the following GDPR principles when processing personal data:

  • Lawfulness, fairness and transparency: Processing is lawful, fair, and transparent to the data subject
  • Purpose limitation: Data is collected for specified, explicit, and legitimate purposes
  • Data minimization: Only data that is necessary is collected and processed
  • Accuracy: Data is kept accurate and up to date
  • Storage limitation: Data is stored only as long as necessary
  • Integrity and confidentiality: Data is processed securely
  • Accountability: We take responsibility for compliance with these principles

3. Data We Collect

We may collect and process the following categories of personal data:

Personal Identification Information

  • Name
  • Email address
  • Phone number
  • Billing address
  • Payment information

Technical Data

  • IP address
  • Browser type and version
  • Time zone setting
  • Operating system
  • Device information

Usage Data

  • Pages visited
  • Features used
  • Service interaction data
  • Error logs

We do not collect any "special categories" of personal data (as defined in GDPR Article 9) unless explicitly provided by you for specific purposes (e.g., accessibility requirements).

4. How We Use Data

We use your personal data for the following purposes:

Purpose Legal Basis
To provide and maintain our services Contractual necessity
To process transactions Contractual necessity
To notify you about changes Contractual necessity & legal obligation
To provide customer support Contractual necessity & legitimate interest
To gather analysis for improvement Legitimate interest
To monitor service usage Legitimate interest
To detect and prevent fraud Legal obligation & legitimate interest

5. Data Sharing

We may share your personal data with third parties only in the following circumstances:

  • Service Providers: With vendors who assist in providing our services (payment processors, hosting providers, etc.) under strict data processing agreements
  • Legal Requirements: When required by law or to respond to legal process
  • Business Transfers: In connection with any merger, sale of company assets, or acquisition
  • With Your Consent: When you explicitly consent to specific sharing

We never sell your personal data to third parties for marketing purposes.

International Transfers

Your data may be transferred to and processed in countries outside the EU/EEA. We ensure such transfers comply with GDPR requirements through:

  • EU Standard Contractual Clauses
  • Privacy Shield certification (for US providers)
  • Binding Corporate Rules

6. Data Security

We implement appropriate technical and organizational measures to protect personal data, including:

  • Encryption of data in transit and at rest
  • Regular security assessments
  • Access controls and authentication
  • Staff training on data protection
  • Incident response procedures

While we implement robust security measures, no system can be 100% secure. We will notify you and relevant authorities of any data breaches as required by law.

7. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

Right Description
Right to Access Request copies of your personal data
Right to Rectification Request correction of inaccurate data
Right to Erasure Request deletion of your data ("right to be forgotten")
Right to Restriction Request restriction of processing
Right to Object Object to processing based on legitimate interest
Right to Data Portability Request transfer of your data to another service
Right to Withdraw Consent Withdraw previously given consent
Right to Complain Lodge a complaint with a supervisory authority

To exercise any of these rights, please contact us using the details in section 10. We will respond within one month (may be extended by two months for complex requests).

8. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to:

  • Enable essential functionality
  • Analyze service usage
  • Personalize content
  • Deliver targeted advertising (with consent)

You can control cookies through your browser settings. Our Cookie Policy provides detailed information about the cookies we use.

Essential cookies cannot be disabled as they are necessary for basic functionality. Other cookies require your consent.

9. Policy Changes

We may update this GDPR compliance statement periodically. We will notify you of significant changes through:

  • Email notification
  • Notice on our website
  • In-service notifications

The "Last updated" date at the top of this page indicates when changes were last made.

10. Contact Us

For questions about this GDPR compliance statement or to exercise your data protection rights, please contact our Data Protection Officer:

  • Email: dpo@vedeck.com
  • Phone: +1 (809) 956-7276

You also have the right to lodge a complaint with your local data protection authority.

This GDPR compliance statement supplements our Privacy Policy and does not replace it. Please read both documents for complete information about how we handle your personal data.