GDPR Compliance
Our commitment to protecting your personal data under the General Data Protection Regulation
GDPR Compliant
Mindcroud is fully compliant with the General Data Protection Regulation (GDPR) and Romanian data protection laws. We are committed to protecting your privacy and giving you control over your personal data.
Our GDPR Compliance Framework
Data Protection by Design
Privacy considerations are built into every aspect of our systems and processes from the ground up.
Transparency
Clear, understandable information about how we collect, use, and protect your personal data.
User Rights
Full support for all GDPR rights including access, rectification, erasure, and data portability.
Data Minimization
We only collect and process personal data that is necessary for our legitimate business purposes.
Your GDPR Rights
Under GDPR, you have the following rights regarding your personal data:
Right to Access (Article 15)
Request a copy of your personal data and information about how it's being processed.
Right to Rectification (Article 16)
Correct inaccurate or incomplete personal data we hold about you.
Right to Erasure (Article 17)
Request deletion of your personal data under certain circumstances.
Right to Restrict Processing (Article 18)
Limit how we use your personal data under certain circumstances.
Right to Data Portability (Article 20)
Receive your personal data in a structured, machine-readable format.
Right to Object (Article 21)
Object to processing of your personal data for direct marketing or legitimate interests.
How to Exercise Your Rights
Contact Methods
Email Request
Send your request to privacy@mindcroud.com
Account Settings
Manage some preferences directly in your account
Data Protection Officer
Contact our DPO at dpo@mindcroud.com
Response Time: We will respond to your request within 30 days as required by GDPR. For complex requests, we may extend this period by up to 60 days and will inform you of any delay.
Data Security Measures
We implement appropriate technical and organizational measures to protect your personal data:
Technical Safeguards
- End-to-end encryption
- Secure data transmission (SSL/TLS)
- Regular security audits
- Access controls and authentication
Organizational Measures
- Staff training on data protection
- Data processing agreements
- Privacy impact assessments
- Incident response procedures
Data Breach Notification
Our Commitment
In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.
What we will tell you:
- Nature of the breach and data involved
- Likely consequences of the breach
- Measures taken to address the breach
- Steps you can take to protect yourself
Supervisory Authority
If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with the supervisory authority:
Romanian Data Protection Authority (ANSPDCP)
Address: B-dul Magheru 28-30, Sector 1, Bucharest, Romania
Phone: +40 318 059 211
Email: anspdcp@dataprotection.ro
Website: www.dataprotection.ro
Contact Our Data Protection Team
For any questions about GDPR compliance or to exercise your rights:
Privacy Team
Email: privacy@mindcroud.com
Response time: Within 30 days
Data Protection Officer
Email: dpo@mindcroud.com
For complex privacy matters