Buba

GDPR Compliance

Your data protection rights under GDPR

Your Rights Under GDPR

The General Data Protection Regulation (GDPR) gives you specific rights regarding your personal data. At Buba, we are committed to protecting these rights and ensuring full compliance with GDPR requirements.

Data Subject Rights

Right to Information

You have the right to be informed about the collection and use of your personal data. This includes information about how we process your data, why we process it, and how long we keep it.

Right of Access

You have the right to request access to your personal data and receive a copy of the personal data we hold about you, along with information about how we process it.

Right to Rectification

You have the right to request that we correct any personal data about you that is inaccurate or incomplete.

Right to Erasure

Also known as the "right to be forgotten," you have the right to request that we delete your personal data in certain circumstances.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances.

Right to Data Portability

You have the right to request that we transfer your personal data to another organization, or provide it to you in a structured, commonly used, and machine-readable format.

Right to Object

You have the right to object to the processing of your personal data in certain circumstances, including for direct marketing purposes.

How We Protect Your Data

  • End-to-end encryption for all voice communications
  • Secure data storage with regular backups
  • Access controls and authentication protocols
  • Regular security audits and vulnerability assessments
  • Staff training on data protection and privacy
  • Incident response procedures for data breaches

Legal Basis for Processing

We process your personal data under the following legal bases:

  • Consent: When you have given clear consent for us to process your data
  • Contract: When processing is necessary for a contract we have with you
  • Legal Obligation: When we must process your data to comply with the law
  • Legitimate Interest: When we have a legitimate business interest that doesn't override your rights

Data Retention

We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Voice recordings are automatically deleted after 30 days unless explicitly saved by you.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the information below. We will respond to your request within one month of receipt.

Email: gdpr@buba.ai
Subject Line: GDPR Data Request
Address: Buba GDPR Team
123 Innovation Drive, Tech Valley, CA 94000

Complaints

If you believe that your data protection rights have been breached, you have the right to lodge a complaint with the relevant supervisory authority. In the EU, you can contact your local data protection authority. You can also contact us directly to resolve any concerns.