GDPR

GDPR Compliance Policy for Workpanda

At Workpanda, we are committed to protecting the privacy and security of your personal data. This GDPR Compliance Policy outlines how we collect, use, store, and process personal data in compliance with the General Data Protection Regulation (GDPR) and other relevant data protection laws.

1. Data Controller

Workpanda is a UK-based company under Micromerger UK Ltd, and acts as the data controller for the personal data collected through our website and services.

2. Personal Data We Collect

We collect personal data that you voluntarily provide when using our website and services, such as:

  • Name
  • Email address
  • Contact information
  • IP address
  • Payment and transaction details (where applicable)

We also collect data related to your usage of our website and services, such as log data and cookies, to improve functionality and user experience.

3. Purpose of Data Collection

We collect and process personal data for the following purposes:

  • To provide and improve our services
  • To communicate with you and respond to your inquiries
  • To process transactions and manage your account
  • For security and fraud prevention
  • To comply with legal and regulatory obligations

4. Lawful Basis for Processing

We process your personal data based on the following lawful grounds:

  • Performance of a contract: We process personal data to provide you with our services as agreed in our terms and conditions.
  • Consent: Where you have given explicit consent for specific activities, such as receiving marketing communications.
  • Legitimate interest: We process data where necessary for the operation of our business, security purposes, and to improve our services.
  • Legal obligation: When we are required to comply with legal or regulatory requirements.

5. Data Security Measures

Workpanda implements industry-standard security practices and technical safeguards to ensure the security and integrity of your personal data:

  • 24/7 server monitoring and infrastructure protection
  • Firewalls, anti-malware, and advanced security modules
  • Data encryption and secure hashing algorithms
  • Regular vulnerability scans and penetration testing
  • Two-factor authentication (2FA) enabled on applicable systems

Our web hosting providers are ISO/IEC 27001:2017 certified, ensuring that our servers adhere to recognized security standards.

6. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy and to comply with legal, accounting, or reporting obligations. Upon your request or when it is no longer required, we will securely delete or anonymize your data.

7. Your Rights

Under GDPR, you have the following rights concerning your personal data:

  • Right to access: You may request a copy of the personal data we hold about you.
  • Right to rectification: You can request the correction of inaccurate or incomplete personal data.
  • Right to erasure: You can request the deletion of your personal data under certain circumstances.
  • Right to restrict processing: You can request that we limit how we use your data.
  • Right to data portability: You can request a copy of your personal data in a structured, machine-readable format.
  • Right to object: You may object to the processing of your data in certain situations.

To exercise these rights, please contact us at [contact information].

8. Third-Party Data Sharing

We do not share your personal data with third parties except when required by law, for fulfilling a service request, or with trusted partners such as payment processors or hosting providers. We ensure that any third parties we work with are GDPR-compliant and follow the same data protection standards.

9. International Transfers

If your data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to protect your data in accordance with GDPR.

10. Cookies and Tracking Technologies

Workpanda uses cookies and similar tracking technologies to enhance your experience on our website. You can manage your cookie preferences in your browser settings.

11. Data Breach Notification

In the event of a data breach that compromises your personal data, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR.

12. Changes to This Policy

We may update this GDPR Compliance Policy from time to time. Any changes will be posted on this page, and we encourage you to review this policy regularly to stay informed about how we are protecting your personal data.

13. Contact Information

If you have any questions or concerns about our GDPR compliance or how we handle your personal data, please contact us at:

Workpanda - Micromerger UK Ltd

info@workpanda.co.uk

Easier Business Management

Our experts will show you how our app can streamline your team’s work.

Get Started