Effective Date: 01 July, 2024
Excelloite Infotech, Inc. ("we", "us", "our") is committed to protecting the privacy and data security of individuals, including users from the European Union (EU). This GDPR Compliance page outlines how we collect, use, and protect personal data in accordance with the General Data Protection Regulation (GDPR).
Data Controller
Identity: Excelloite Infotech, Inc.
Contact: care@xilloite.ai
Purpose: We act as the data controller for the personal data we collect from our users.
Principles for Processing Personal Data
Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner.
Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes and do not further process data in a manner that is incompatible with those purposes.
Data Minimization: We collect only the necessary personal data for the purposes for which it is processed.
Accuracy: We ensure that personal data is accurate and kept up to date.
Storage Limitation: We retain personal data for no longer than necessary for the purposes for which it is processed.
Integrity and Confidentiality: We implement appropriate technical and organizational measures to ensure the security and confidentiality of personal data.
Your Rights Under GDPR
Right to Access: You have the right to access your personal data and request information about how we process it.
Right to Rectification: You have the right to request the correction of inaccurate or incomplete personal data.
Right to Erasure: You have the right to request the deletion of your personal data under certain circumstances.
Right to Restriction of Processing: You have the right to restrict the processing of your personal data under certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
Right to Object: You have the right to object to the processing of your personal data under certain circumstances.
Legal Basis for Processing Personal Data
Contractual Necessity: We process personal data to fulfill our contractual obligations with users.
Consent: We may process personal data based on your consent, which you can withdraw at any time.
Legitimate Interests: We may process personal data based on our legitimate interests, provided that your rights and freedoms are not overridden.
Data Transfer and Sharing
Third Parties: We may share personal data with third-party service providers to assist in providing and improving our services. We ensure that such third parties comply with GDPR requirements.
International Transfers: If we transfer personal data outside the EU, we ensure that adequate safeguards are in place to protect the data.
Data Breach Notification
Notification: In the event of a data breach affecting your personal data, we will notify you and relevant supervisory authorities in accordance with GDPR requirements.
Changes to This GDPR Compliance Page
Updates: We may update this GDPR Compliance page from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any changes by posting the updated GDPR Compliance page on our website.
Contact Us
If you have any questions about our GDPR Compliance practices or wish to exercise your rights under GDPR, please contact us at care@xilloite.ai
