GDPR Policy

(a) Request Deletion: Users have the right to request the deletion of their personal data from the accounts of other users they have connected with. This right ensures that users maintain control over their personal information, even after it has been shared. (b) Submission Process: Users can submit a deletion request through the app’s privacy settings or contact management section. This feature is designed to be user-friendly, ensuring that users can easily find and use it without unnecessary complications. (c) Automated Deletion: Upon receiving a request, the system will automatically remove the user’s data from the contact lists of all users they are connected with. This automation ensures prompt and consistent responses to deletion requests. (d) Notification: Users will be notified once their data has been successfully deleted. This confirmation provides users with peace of mind that their request has been fully processed.

(a) Personal Data Control: Users can control the amount of personal data they share by customizing their Monty Card. This customization allows users to tailor their data sharing to their comfort levels and preferences. (b) Profile Management: Users have full control over their data, deciding what information to include or exclude on their profile and contact forms. This feature ensures that users can manage their data in a way that aligns with their privacy concerns.

(a) Explicit Consent: The app ensures that users provide explicit consent before their data is collected or shared. This practice aligns with GDPR’s requirement for informed and voluntary consent.

(b) Privacy Policy Access: A comprehensive privacy policy is accessible within the app, explaining how user data is handled in compliance with GDPR. This policy is written in clear, understandable language to ensure users are fully informed about their data rights.

(a) Data Access: Users can easily access their personal data within the app and view the information stored about them. This transparency is crucial for user trust and data accuracy.

(b) Data Rectification: Users can update and rectify their personal information at any time to ensure accuracy and relevance. This feature supports the maintenance of up-to-date and accurate user data.

a) Exporting Data: Users can export their personal data in a commonly used, machine-readable format. This ensures users can transfer their data to other services or for their records.

(b) Admin Data Export: The super admin user log and other data can be exported to CSV, ensuring compliance with data portability requirements. This functionality supports organizational needs and regulatory compliance.

(a) Encryption: All personal data is encrypted both in transit and at rest. This encryption protects user data from unauthorized access and breaches.

(b) Security Audits: Regular security audits are conducted to ensure the highest level of data protection and to address potential vulnerabilities. These audits help maintain robust security measures and address any emerging threats.

(a) Data Protection Officer (DPO): A DPO is designated to oversee GDPR compliance and handle data protection queries. The DPO ensures that the organization adheres to GDPR requirements and addresses user concerns effectively.

(b) Staff Training: Staff members are trained on GDPR requirements, and internal policies are in place to ensure ongoing compliance. This training ensures that all team members understand their roles in protecting user data.

(a) Reputable Services: The app uses reputable third-party services for data processing, ensuring that these vendors comply with GDPR. Selecting reputable processors helps maintain high standards of data protection.

(b) Data Protection Clauses: Contracts with third-party processors include data protection clauses to ensure GDPR compliance. These clauses hold processors accountable for maintaining GDPR standards.