GDPR Compliance

What is GDPR?

The GDPR (General Data Protection Regulation) is an EU Regulation that came into effect from May 25, 2018 which significantly enhances the protection of the personal data of EU citizens. GDPR also increases the obligations on organisations who collect or process personal data.

What is Personal Data?

Personal data is any information that relates to an individual who can be directly or indirectly identified.

How does Krunch comply with the GDPR?

We at Krunch Lab Inc are always committed to protecting your personal data and your right to privacy. To be in line with the requirement of the GDPR and to adhere to the regulation, we have done the below mentioned:

  • We have reviewed all our existing data collection and processing methods and conducted a DPIA (Data Protection Impact Assessment) to identify and minimize any risks from our processing activities.
  • We have appointed a Data Protection Officer(DPO) to oversee the privacy compliance program.
  • We have conducted awareness session to all our employees to ensure that they understand the importance of GDPR and handle the data properly.
  • We have documented the accurate records of our processing activities, both as a processor and controller of personal data.
  • We have reviewed our security measures to ensure that the personal data we collect and process on our systems is adequately protected.
  • We have defined process and procedures to respond to data subject requests in our in our role as a controller.
  • We have drafted and incorporate the EU's Standard Contractual Clauses in our Data Processing Addendum.
  • We have revised our Privacy Policy to incorporate the requirements of the law to clearly explain our commitment to the GDPR, and to be transparent about how we use personal data, and to give individuals information about how they can exercise their data subject rights.

You can write to us at hello@krunchdata.io for any clarifications or concerns.