Skip to Content

GDPR

LEGAL Terms of Service Privacy Policy Cookie Policy Children's Privacy GDPR EULA Disclaimer Intellectual Property Credits

General Data Protection Regulation

At Amber Sport, we take data protection and privacy seriously. As part of our commitment to ensuring the security and confidentiality of your personal information, we have implemented measures to comply with the General Data Protection Regulation (GDPR).

What is GDPR?

The General Data Protection Regulation (GDPR) is an EU-wide privacy and data protection law that aims to enhance the protection of individuals' personal data and provide them with greater control over how their data is used. GDPR applies to all businesses that process the personal data of EU residents, regardless of their location.

Our Approach to GDPR Compliance:

Data Collection and Processing: We only collect and process personal information that is necessary for the functioning of our products and services. Your data will never be used for purposes beyond what is required, and we follow strict data minimization principles.

Lawful Basis: We ensure that our data processing activities are based on a lawful basis, such as your consent, contract performance, legal obligations, vital interests, public tasks, or legitimate interests.

Transparency and Information: We provide clear and concise information about our data processing practices through our updated Privacy Policy, which outlines the types of data we collect, how we use it, and your rights as a data subject.

Data Security: We have implemented robust security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These security measures include encryption, access controls, and regular security audits.

Data Subject Rights: As a data subject, you have certain rights under GDPR, including the right to access, rectify, erase, restrict processing, object, and data portability. You can exercise these rights by contacting us at [email protected].

Data Processing Addendum (DPA): For customers who require a Data Processing Addendum, we have a comprehensive DPA that meets GDPR requirements. Please contact us at [email protected] to request a copy.

Data Breach Management: In the event of a data breach, we have established incident response procedures to promptly and effectively manage any potential risks to your data.

Data Retention: We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, and in compliance with legal obligations.

Data Transfer: When transferring personal data to countries outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.

Employee Training: Our employees undergo regular training on data protection and GDPR compliance to ensure they handle your data with the utmost care and confidentiality.

Your Trust Matters:

We value your trust and are committed to protecting your privacy. By implementing GDPR compliance measures, we strive to provide you with the highest level of data protection and control over your personal information.

Should you have any questions, requests, or concerns about our data practices or GDPR compliance, please do not hesitate to contact us at [email protected].