Compliance

GDPR Compliance

ClockEye is fully committed to GDPR compliance. We provide the tools and safeguards necessary for you to use our services in compliance with European data protection regulations.

Our Commitment

As a data processor, ClockEye is committed to helping our customers (data controllers) comply with their obligations under the General Data Protection Regulation (GDPR). We process personal data only as instructed by our customers and implement appropriate technical and organizational measures to ensure data protection.

We continuously monitor regulatory developments and update our practices to maintain compliance with evolving data protection requirements.

Your Data Rights

Right to Access

You can request a copy of all personal data we hold about you.

Right to Rectification

You can request correction of any inaccurate or incomplete data.

Right to Erasure

You can request deletion of your personal data ("right to be forgotten").

Right to Portability

You can request your data in a machine-readable format.

Right to Restrict

You can request restriction of processing in certain circumstances.

Right to Object

You can object to processing based on legitimate interests.

Security Measures

Data Processing Agreement (DPA) available for all customers
Standard Contractual Clauses (SCCs) for international transfers
End-to-end encryption for all data in transit and at rest
Regular security audits and penetration testing
Privacy by design in all product development
Appointed Data Protection Officer (DPO)
Detailed records of processing activities
Clear data retention and deletion policies
Employee training on data protection
Incident response procedures

Data Processing Agreement

We provide a comprehensive Data Processing Agreement (DPA) to all customers that outlines our obligations as a data processor, including:

  • Subject matter and duration of processing
  • Nature and purpose of processing
  • Types of personal data processed
  • Categories of data subjects
  • Obligations and rights of the controller
Request DPA

International Data Transfers

When personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs): We use EU-approved SCCs for transfers to third countries.
  • EU Data Hosting: Option to store data exclusively in EU data centers.
  • Transfer Impact Assessments: Regular assessments of data transfer risks.

Contact Our DPO

For any questions or requests related to GDPR compliance or data protection, please contact our Data Protection Officer:

  • Email: dpo@clockeye.ai
  • Address: ClockEye Inc., Data Protection Officer, 123 Tech Street, San Francisco, CA 94105