GDPR Compliance

Your Data Protection Rights Under EU Regulations

Last updated: December 2024

Table of Contents

Questions?

Contact our legal team for clarification

Send Email

Your Rights Under GDPR

Under the General Data Protection Regulation (GDPR), if you are located in the European Union, you have certain rights regarding your personal data. We are committed to ensuring these rights are respected and easily exercisable.

Right to Access

You have the right to request a copy of all personal data we hold about you. This includes the right to know what data we collect, how we use it, and who we share it with.

Right to Rectification

You have the right to request correction of any inaccurate or incomplete personal data we hold about you.

Right to Erasure (Right to be Forgotten)

You have the right to request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the original purpose or when you withdraw consent.

Right to Restrict Processing

You have the right to request that we limit the processing of your personal data under certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another service provider.

Right to Object

You have the right to object to the processing of your personal data for direct marketing purposes or where processing is based on legitimate interests.

Data Collection and Processing

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you explicitly consent to specific processing activities
  • Contract: When processing is necessary to fulfill our contractual obligations
  • Legal Obligation: When required by law
  • Legitimate Interest: When necessary for our legitimate business interests, balanced against your rights

Data We Collect

  • Contact information (name, email, phone number)
  • Project requirements and business information
  • Communication history and preferences
  • Website usage data and analytics
  • Technical information (IP address, browser type, device information)

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary based on the type of data and the purpose for which it was collected.

International Data Transfers

When we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place to protect your data. These safeguards include:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules
  • Certification mechanisms and codes of conduct

Consent Management

Where we rely on consent as the legal basis for processing your personal data:

  • Your consent is freely given, specific, informed, and unambiguous
  • You can withdraw your consent at any time
  • Withdrawal of consent does not affect the lawfulness of processing before withdrawal
  • We maintain records of consent to demonstrate compliance

Data Protection Officer

NavioxBD has appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure compliance with GDPR requirements. You can contact our DPO regarding:

  • Questions about our data protection practices
  • Exercising your data subject rights
  • Data protection concerns or complaints
  • Guidance on data protection matters

Data Breach Notification

In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach. The notification will include:

  • Description of the nature of the breach
  • Categories and approximate number of data subjects affected
  • Likely consequences of the breach
  • Measures taken or proposed to address the breach

Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the information below. We will respond to your request within one month, though this may be extended by up to two months for complex requests.

Contact Information

Email: privacy@navioxbd.com

Data Protection Officer: dpo@navioxbd.com

Phone: +880 1234-567890

Address: Dhaka, Bangladesh

Supervisory Authority

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority. You can find contact information for EU supervisory authorities at:

https://edpb.europa.eu/about-edpb/board/members_en

Updates to This Policy

We may update this GDPR compliance information from time to time to reflect changes in our practices or applicable law. We will notify you of any material changes by posting the updated information on our website and updating the “Last Updated” date at the top of this page.

Need Legal Assistance?

Our legal team is here to help with any questions about our policies or your rights. We're committed to transparency and protecting your interests.

Email UsContact Form