GDPR Compliance

Our GDPR Commitment

BeGlocal is committed to protecting your personal data in accordance with the EU General Data Protection Regulation (GDPR) and Japan's Personal Information Protection Act (PIPA). We have implemented comprehensive measures to ensure your privacy rights are respected and protected across all jurisdictions.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract: To provide our translation services as agreed
• Legitimate Interest: To improve our services and prevent fraud
• Consent: For marketing communications (where applicable)
• Legal Obligation: To comply with tax, accounting, and other legal requirements

Data We Collect

Under GDPR, we only collect and process personal data that is:

• Necessary for our legitimate business purposes
• Adequate, relevant, and limited to what's needed
• Accurate and kept up to date
• Kept only as long as necessary
• Processed lawfully, fairly, and transparently

Your Rights Under GDPR

Right to Access (Article 15)

You can request information about what personal data we hold about you, how we use it, and who we share it with.

Right to Rectification (Article 16)

You can ask us to correct inaccurate personal data or complete incomplete data.

Right to Erasure (Article 17)

You can request deletion of your personal data in certain circumstances, such as when it's no longer needed for the original purpose.

Right to Restrict Processing (Article 18)

You can ask us to temporarily stop processing your personal data in certain situations.

Right to Data Portability (Article 20)

You can request a copy of your personal data in a structured, commonly used format that you can transfer to another service.

Right to Object (Article 21)

You can object to processing of your personal data in certain circumstances, particularly for direct marketing.

Data Protection Measures

We have implemented technical and organizational measures to ensure data protection:

• Data Minimization: We only collect data necessary for our services
• Encryption: Data is encrypted in transit and at rest
• Access Controls: Strict access controls and authentication
• Data Retention: Automatic deletion of data when no longer needed
• Staff Training: Regular privacy training for our team
• Privacy by Design: Privacy considerations built into our systems

International Transfers

When we transfer your data outside the EU/EEA, we ensure adequate protection through:

• Standard Contractual Clauses (SCCs) with third-party processors
• Adequacy decisions by the European Commission
• Appropriate technical and organizational safeguards

Data Breach Notification

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will:

• Notify the relevant supervisory authority within 72 hours
• Inform affected individuals without undue delay
• Provide clear information about the breach and our response
• Take immediate steps to contain and remedy the breach

How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us:

• Email: privacy@be-glocal.com
• Contact Form: Contact Support
• Subject Line: "GDPR Rights Request"

We will respond to your request within 30 days (or 60 days for complex requests). There is no charge for most requests, but we may charge a reasonable fee for excessive or repetitive requests.

Complaints

If you're not satisfied with how we handle your personal data, you have the right to lodge a complaint with:

• Your local data protection authority
• The supervisory authority in your EU country
• The Irish Data Protection Commission (our lead supervisory authority)

Contact Our Data Protection Officer

For questions about data protection and GDPR compliance:

• Email: dpo@be-glocal.com
• Subject: "Data Protection Inquiry"