GDPR Compliance

Under the General Data Protection Regulation (GDPR), you have several rights regarding your personal data. Lujain.ai is committed to protecting your privacy and ensuring compliance with GDPR requirements.

Your Rights Under GDPR

1. Right to Information

You have the right to be informed about the collection and use of your personal data. This includes information about what data we collect, how we use it, how long we keep it, and who we share it with.

2. Right of Access

You have the right to request access to your personal data. You can ask us to confirm whether we are processing your personal data and, if so, to provide you with a copy of that data.

3. Right to Rectification

You have the right to have inaccurate personal data corrected. You can also ask us to complete incomplete personal data, including by providing a supplementary statement.

4. Right to Erasure (Right to be Forgotten)

In certain circumstances, you have the right to request that we delete your personal data. This right applies when your personal data is no longer necessary for the original purpose, when you withdraw consent, or when your data has been unlawfully processed.

5. Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when processing is unlawful.

6. Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller without hindrance.

7. Right to Object

You have the right to object to the processing of your personal data in certain circumstances, particularly for direct marketing purposes or when processing is based on legitimate interests.

8. Rights Related to Automated Decision Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

How to Exercise Your Rights

To exercise any of these rights, please contact us. We will respond to your request within one month of receipt. In some cases, we may extend this period by two additional months where necessary, taking into account the complexity and number of requests.

Data Protection Officer

If you have any questions about our GDPR compliance or wish to exercise your rights, you can contact our Data Protection Officer through our contact page.

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates GDPR. You can contact your local data protection authority or the authority in the country where the alleged violation occurred.

Legal Basis for Processing

We process your personal data based on various legal grounds under GDPR, including:

• Consent: When you have given clear consent for us to process your data
• Contract: When processing is necessary for the performance of a contract
• Legal obligation: When we need to comply with legal requirements
• Legitimate interests: When processing is necessary for our legitimate business interests

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. When determining retention periods, we consider the amount, nature, and sensitivity of the data, the potential risk of harm, and applicable legal requirements.

International Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as adequacy decisions, standard contractual clauses, or binding corporate rules.

Contact Information

For any questions regarding this GDPR compliance statement or to exercise your rights, please contact us.