GDPR Compliance

1. Introduction

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. It is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens' data privacy and to reshape the way organizations across the region approach data privacy.

2. Our Commitment to GDPR

At QRFlow.in, we are committed to ensuring that our services are compliant with the GDPR. We believe that privacy is a fundamental right and that our users should have control over their personal data. We apply these standards to all users regardless of their location.

3. Data Subject Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right of Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can request that we correct inaccurate data.
• Right to Erasure: You can request that we delete your personal data under certain conditions.
• Right to Portability: You can request your data in a machine-readable format.
• Right to Object: You can object to the processing of your data for specific purposes.

4. Data Collection and Processing

We only collect and process personal data that is necessary for the provision of our services. The types of data we collect and how we use them are detailed in our Privacy Policy.

5. Data Transfers

If we transfer personal data outside of the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs), to maintain the same level of protection.

6. Data Security

We implement robust technical and organizational measures to ensure a level of security appropriate to the risk, including pervasive encryption, regular audits, and strict access controls.

7. Contact Our Data Protection Officer

If you have any questions about our GDPR compliance or wish to exercise your data subject rights, please contact our Data Protection Officer at: