GDPR Compliance Policy – SoftFinDev

SoftFinDev ensures full compliance with the General Data Protection Regulation (GDPR) for all users based in the EU and EEA.

1. Lawful Basis for Processing

We process personal data based on consent, contractual necessity, and legal obligations under Article 6 of the GDPR.

2. Data Subject Rights

You may access, correct, or erase your data, or request data portability or restriction of processing.

3. Data Transfers

If data is transferred outside the EU, we use standard contractual clauses to ensure appropriate safeguards.

4. Data Protection Measures

All data is encrypted in transit and at rest, with access limited to authorized personnel only.

5. Data Retention

We retain data for no longer than necessary to fulfill legal or business obligations, typically up to 5 years.

6. Breach Notification

In the event of a breach, we will notify affected users and regulators within 72 hours.

7. Children’s Data

Our services are not directed to individuals under 16. We do not knowingly collect children's personal data.

8. Contact

If you have questions regarding your data, email: gdpr@softfindev.com