Thakur Cloud Logo

GDPR Compliance

Last updated: May 11, 2025

Introduction to GDPR

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. It also addresses the export of personal data outside the EU and EEA areas.

At Thakur Cloud, we are committed to ensuring the security and protection of the personal information that we process, and to providing a compliant and consistent approach to data protection. This page outlines how we comply with the GDPR and what rights you have regarding your personal data.

Our Commitment to GDPR Compliance

Thakur Cloud is dedicated to safeguarding the personal information under our control and in developing a data protection regime that is effective, fit for purpose and demonstrates an understanding of, and appreciation for, the GDPR. Our preparation includes:

  • Information Audit: We've conducted a company-wide information audit to identify and assess what personal information we hold, where it comes from, how and why it is processed, and if and to whom it is disclosed.
  • Policies & Procedures: We've implemented data protection policies and procedures to meet the requirements and standards of the GDPR and any relevant data protection laws.
  • Legal Basis for Processing: We've reviewed all processing activities to identify the legal basis for processing and ensuring that each basis is appropriate for the activity it relates to.
  • Privacy Notice/Policy: We've revised our Privacy Notice(s) to comply with the GDPR, ensuring that all individuals whose personal information we process have been informed of why we need it, how it is used, what their rights are, who the information is disclosed to, and what safeguarding measures are in place to protect their information.
  • Direct Marketing: We've revised the wording and processes for direct marketing, including clear opt-in mechanisms for marketing subscriptions, a clear notice and method for opting out, and providing unsubscribe features on all subsequent marketing materials.
  • Data Subject Rights: We've developed procedures to ensure that we can accommodate all the rights of data subjects under the GDPR.
  • Data Breaches: We've developed breach procedures to ensure that we have safeguards and measures in place to identify, assess, investigate, and report any personal data breach as early as possible.
  • Data Protection Impact Assessments: We've implemented procedures for when we process personal information that is considered high risk, involves large scale processing, or includes special category/criminal conviction data.
  • International Data Transfers: We've established procedures for securing and encrypting personal information when transferring it internationally.
  • Employee Awareness & Training: We've implemented employee awareness and GDPR training programs to ensure that our staff understand the requirements of the GDPR and our policies.

Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  1. The right to be informed - You have the right to be informed about the collection and use of your personal data.
  2. The right of access - You have the right to request a copy of the information that we hold about you.
  3. The right to rectification - You have the right to correct data that we hold about you that is inaccurate or incomplete.
  4. The right to erasure - In certain circumstances, you can ask for the data we hold about you to be erased from our records.
  5. The right to restrict processing - You have the right to restrict the processing of your personal data in certain circumstances.
  6. The right to data portability - You have the right to have the data we hold about you transferred to another organization.
  7. The right to object - You have the right to object to certain types of processing such as direct marketing.
  8. Rights in relation to automated decision making and profiling - You have the right not to be subject to automated decision-making including profiling.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee compliance with this privacy notice. If you have any questions about this privacy notice or how we handle your personal information, please contact the DPO at:

Email: dpo@thakurcloud.com
Address: Data Protection Officer, Thakur Cloud, 123 Business Avenue, Tech City, TC 12345

Data Breach Notification

We have robust procedures in place to detect, investigate, and report data breaches. In line with the GDPR, where a breach is likely to result in a risk to the rights and freedoms of individuals, we will report it to the relevant supervisory authority within 72 hours of becoming aware of it. In cases where a breach is likely to result in a high risk to the rights and freedoms of individuals, we will also notify those concerned directly.

International Data Transfers

Thakur Cloud may transfer personal data to countries outside the European Economic Area (EEA). When we do so, we ensure that appropriate safeguards are in place to protect your data, such as:

  • Transferring to countries that have been deemed to provide an adequate level of protection
  • Using specific contracts approved by the European Commission
  • Transferring data to US organizations that are part of the Privacy Shield

Contact Us

If you have any questions about our GDPR compliance or how we handle your personal data, please contact us at:

Email: privacy@thakurcloud.com
Phone: +1 (123) 456-7890
Address: +1 (123) 456-7890
Address: Thakur Cloud, 123 Business Avenue, Tech City, TC 12345