GDPR Compliance - MCS Connect

MCS Connect is committed to compliance with the General Data Protection Regulation (GDPR) and protecting the privacy and rights of individuals in the European Economic Area (EEA). This page outlines your rights and how we handle your personal data in accordance with GDPR.

1. Your Rights Under GDPR

As a data subject, you have the following rights:

Right of Access (Article 15)

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and access to that personal data along with certain information.

Right to Rectification (Article 16)

You have the right to have inaccurate personal data corrected and incomplete personal data completed.

Right to Erasure (Article 17)

Also known as the "right to be forgotten," you can request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the original purpose.

Right to Restrict Processing (Article 18)

You have the right to request restriction of processing of your personal data in certain situations.

Right to Data Portability (Article 20)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

Right to Object (Article 21)

You have the right to object to processing of your personal data for direct marketing purposes or processing based on legitimate interests.

Rights Related to Automated Decision-Making (Article 22)

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you.

2. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us using the information below. We will respond to your request within one month, though this may be extended by two months for complex requests.

We may need to verify your identity before processing your request to ensure the security of your data.

3. Legal Basis for Processing

We process your personal data based on the following legal bases:

Contract Performance: To fulfill our contractual obligations to provide our services
Legitimate Interests: For business operations, security, and service improvement
Consent: Where you have given explicit consent for specific processing activities
Legal Obligations: To comply with applicable laws and regulations

4. Data Transfers

Your personal data may be transferred to and processed in countries outside the EEA. When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in our Privacy Policy, unless a longer retention period is required or permitted by law. When data is no longer needed, we securely delete or anonymise it.

6. Data Protection Officer

If you have questions or concerns about our data processing practices or wish to exercise your rights, you can contact our Data Protection Officer at:

Email: [email protected]

7. Right to Lodge a Complaint

If you believe that our processing of your personal data violates GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.

In the UK, you can contact the Information Commissioner's Office (ICO) at ico.org.uk.

8. Contact Us

For any GDPR-related inquiries or to exercise your rights, please contact us:

Email: [email protected]
Support: [email protected]

Note: This GDPR information should be reviewed by legal counsel to ensure full compliance with GDPR requirements and any applicable national data protection laws.