MAKE APPOINTMENT

GDPR Compliance

Quantum Dynamics Impact Consulting – GDPR Compliance

The following addendum outlines Quantum Dynamics Impact Consulting’s (“QDIC”) commitment to complying with the General Data Protection Regulation (GDPR) for client and website user data from the European Union (EU).

1. Legal Basis for Data Processing

QDIC relies on the following legal bases for processing EU resident data:

  • Contractual Necessity: When processing client data entrusted to us during engagements, we do so to fulfill our contractual obligations and deliver the agreed-upon services.
  • Legitimate Interest: We process website data for website optimization purposes, allowing us to improve user experience and provide relevant content. This constitutes a legitimate interest for QDIC, balanced against user privacy.

2. Data Subject Rights

EU residents have specific rights under GDPR regarding their data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
  • Right to Erasure (Right to be Forgotten): You have the right to request that we delete your personal data, subject to any legal or contractual restrictions.
  • Right to Restriction of Processing: You have the right to restrict the processing of your personal data in certain situations.
  • Right to Data Portability: You have the right to request that we transfer your personal data to another controller in a structured, commonly used, and machine-readable format.
  • Right to Object: You have the right to object to the processing of your personal data for marketing purposes.

3. Data Transfers

QDIC understands the limitations on transferring EU resident data outside the European Economic Area (EEA). We will only transfer data to processors located in EEA countries or countries with an adequacy decision from the European Commission. For any exceptional transfers outside the EEA, we will implement appropriate safeguards, such as standard contractual clauses approved by the European Commission.

4. Data Breach Notification

In the event of a data breach involving EU resident data, QDIC will notify the relevant supervisory authority within 72 hours and communicate the breach to affected individuals without undue delay.

5. Your GDPR Contact

+256 772 92105For any inquiries or to exercise your GDPR rights, please contact our Data Protection Officer at info@qdic.org or +256 772 92105.

Please note: This is an addendum to the general Data Protection Policy and should be included alongside it on your website. It’s important to consult with a legal professional to ensure full GDPR compliance for your specific business practices.