GDPR Compliance
How We Ensure Your Data Privacy
Effective Date: October 2024
What is GDPR?
The EU General Data Protection Regulation (GDPR) protects the privacy and personal data of all EU citizens. It applies to any company that processes personal data of EU residents, regardless of where the company is located.
Our Commitment to Privacy by Design
At Bravvo, we embed privacy protection into our systems from the ground up, ensuring we process only the data necessary (data minimization) and limit access to personal information to authorized individuals.
Key GDPR Rights We Honor
- Clear Consent
We make it easy for users to understand what they are consenting to. We use clear, accessible language, and it’s just as easy to withdraw consent as it is to give it.
- Right to Access
Users can request confirmation about whether we’re processing their data, for what purpose, and obtain a copy of it at any time.
- Right to Be Forgotten
Also known as Data Erasure, users can request the deletion of their personal data if it is no longer necessary for the purpose for which it was collected or if they withdraw consent.
- Data Storage & Minimization
We only store the necessary personal data for as long as required. We regularly review and minimize the amount of data we retain.
Where We Store Data
Your data is securely hosted on Amazon Web Services (AWS) within the European Economic Area (EEA) to ensure compliance with GDPR regulations.
Ensuring Compliance
Bravvo’s Chief Technology Officer (CTO) monitors all personal data handling. We conduct regular internal privacy reviews and risk assessments to ensure compliance with GDPR.
Breach Notification
In the unlikely event of a data breach that could impact your rights, we will notify you within 72 hours, as required by law, and inform the relevant supervisory authorities.