1. Overview
The General Data Protection Regulation (GDPR) is a regulation of the European Union that governs the collection, processing, and storage of personal data of EU residents. Fixvis is committed to complying with GDPR requirements.
2. Lawful Basis for Processing
We process personal data under the following lawful bases:
- Contract performance: Processing necessary to provide the Services you've requested
- Legitimate interests: Processing for fraud prevention, security, and service improvement
- Consent: Where you have given explicit consent for specific processing activities
- Legal obligation: Where processing is required by applicable law
3. Data We Collect
We collect and process the following categories of personal data:
- Account data: Name, email address, company name
- Technical data: IP address, browser type, device information
- Usage data: Features used, reports generated, interactions
- Customer data: Domain names and keyword data submitted for scanning
4. Your Rights Under GDPR
If you are an EU resident, you have the following rights:
- Right of access: Request a copy of your personal data
- Right to rectification: Request correction of inaccurate data
- Right to erasure: Request deletion of your data ("right to be forgotten")
- Right to restriction: Request limited processing of your data
- Right to portability: Receive your data in a structured, commonly used format
- Right to object: Object to processing based on legitimate interests
- Right to withdraw consent: Withdraw consent where processing is based on consent
To exercise any of these rights, contact us at privacy@fixvis.ai.
5. International Data Transfers
Fixvis stores and processes data in the United States. When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.
6. Data Security
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption in transit, access controls, and regular security assessments.
7. Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.
8. Data Protection Officer
Our Data Protection Officer can be reached at dpo@fixvis.ai.
9. Contact
For GDPR-related inquiries, contact us at:
privacy@fixvis.ai