The GDPR is a regulation designed to harmonize data privacy laws throughout the European Union (EU). This regulation offers individuals in the EU greater transparency and control over how their personal data is used and make companies handling personal data accountable for their choices.
Clustermarket is considered a Controller. This means we make independent decisions about how personal data is collected and used on our platform, and we take full responsiblity for ensuring that this processing complies with the GDPR.
When you use Clustermarket, your organisation may also act as a controller for the data you manage in relation to your own activities. However, Clustermarket remains an independent controller of the user data processed through our platform. This includes handling requests from users about their data and making sure our services meet the requirements of data protection law.
We are committed to be transparent in how we handle and process personal data by following the GDPR key principles:
We only process personal data we actually need for providing our products and services, namely: name, email, IP address and, when applicable, phone number.
We have conducted a detailed risk analysis of all applications that may process personal data. Based on the result of such analysis, we have put in place appropriate measures that allow us to comply with the GDPR.
As part of the GDPR, EU data subjects have the following rights:
We have designed our platform with several self-service features that our customers can leverage to assist in reviewing the personal data stored on our platform.
When we, as a Controller, receive directly a request from a data subject, we will engage the respective customer as soon as possible (within one month at most) to respond to the data subject request (unless otherwise required by law).