Back to Home

GDPR Compliance

Last updated: 4/30/2025

1. Introduction

At Noxy Media, we are committed to ensuring the privacy and protection of your personal data in compliance with the General Data Protection Regulation (GDPR). This policy outlines how we adhere to GDPR requirements.

2. Data Controller

Noxy Media acts as a data controller for the personal data we collect and process. We are responsible for determining the purposes and means of processing your personal data.

3. Lawful Basis for Processing

We process your personal data on the following lawful bases:

  • Consent: When you have given clear consent for us to process your personal data for a specific purpose.
  • Contract: When processing is necessary for the performance of a contract with you.
  • Legal Obligation: When processing is necessary for compliance with a legal obligation.
  • Legitimate Interests: When processing is necessary for our legitimate interests or those of a third party, except where such interests are overridden by your interests or fundamental rights.

4. Your Rights Under GDPR

Under GDPR, you have the following rights:

  • Right to be informed about how we use your personal data.
  • Right to access your personal data.
  • Right to rectification if your personal data is inaccurate or incomplete.
  • Right to erasure (right to be forgotten) in certain circumstances.
  • Right to restrict processing in certain circumstances.
  • Right to data portability, allowing you to obtain and reuse your personal data.
  • Right to object to processing based on legitimate interests or direct marketing.
  • Rights related to automated decision making and profiling.

5. Data Protection Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data where appropriate.
  • Regular testing and evaluation of the effectiveness of security measures.
  • Staff training on data protection and security.
  • Access controls to limit who can access personal data.

6. International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.

7. Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.

8. Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our data protection strategy and implementation. You can contact our DPO at dpo@noxymedia.com.

9. Contact Us

If you have any questions about our GDPR compliance or wish to exercise your rights, please contact us at gdpr@noxymedia.com.