What is GDPR?
The General Data Protection Regulation (GDPR) is a regulation of the European Union (EU) that came into effect on May 25, 2018. Its main goal is to give control back to individuals over their data and to harmonize data protection laws across the EU. GDPR applies to all organizations that process the personal data of EU residents, regardless of where the organization is located. It gives individuals several rights, including the right to access, correct, and delete their data, as well as the right to object to the processing of their data. Organizations are also required to implement appropriate security measures to protect personal data and to report data breaches to the relevant authorities and affected individuals.

Data Collection
We collect personal data from users of our website and services to provide personalized QR codes and other related services. The personal data we collect may include but is not limited to, name, email address, and billing information.

Data Storage and Processing
All personal data collected by ElkQR is stored and processed on servers located in Europe, specifically in Belgium on Google Cloud. We take appropriate measures to ensure the security and confidentiality of personal data, including regular backups and encryption.

Data Retention
We retain personal data for as long as necessary to provide our services and for legal and regulatory compliance. After that, we delete or anonymize the data.

Data Access and Correction
Users have the right to access, correct, and delete their data. They can do this by contacting us at GDPR@elkqr.com.

Data Transfer
We do not transfer personal data to third parties, except as required by law or regulatory requirements.

Data Breaches
We have implemented security measures to detect and respond to data breaches. In the event of a data breach, we will promptly notify the relevant authorities and affected individuals.

Supported GDPR Features
We support all GDPR requirements, including but not limited to, data access, data correction, and data deletion requests, as well as data portability.

Responsibility of Application Admin
The application administrator is responsible for ensuring that personal data is collected and processed by GDPR.

User’s Responsibility
Users are responsible for ensuring that they provide accurate and up-to-date personal data and for informing us of any changes to their data.

Responsibility of Developer
Our developers are responsible for ensuring that our website and services comply with GDPR and for implementing appropriate security measures to protect personal data.

Contact Us
If you have any questions about our GDPR compliance or need assistance with your data, please contact us at support@elkqr.com. We will do our best to assist you.

By using our website and services, you confirm that you have read, understood, and agree to be bound by this GDPR Compliance Addendum.