Generative Ai Linework

GDPR Compliance Statement

Last Updated: 2025-07-09

Introduction

At CromStel IT Group, we value your privacy and are committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page outlines how we collect, use, and protect your personal data when you visit our website or use our services.

1. Data Controller Information

CromStel IT Group is the data controller responsible for your personal data. If you have any questions regarding your data privacy, please contact us:

πŸ“ Address: Lamptey Street, North-Gbawe
πŸ“ž Phone: +233 247 322 116

πŸ“§ Email: info@cromstelit.com
πŸ“§ Support Email: support@cromstelit.com

2. What Personal Data We Collect

We may collect and process the following types of personal data:

  • Identity Information: Name, email address, phone number.
  • Technical Data: IP address, browser type, device information, and cookies (for analytics and functionality).
  • Transaction Data: Payment details if you purchase our services.
  • Communication Data: Any messages or inquiries sent to us.

3. Purpose of Data Collection

We process your personal data for the following purposes:

  • To provide and improve our services.
  • To respond to inquiries and provide customer support.
  • To comply with legal and regulatory obligations.
  • To send promotional or marketing materials (only with your consent).

4. Legal Basis for Processing

We process personal data under the following lawful bases:

  • Your consent – when you voluntarily provide us with data.
  • Performance of a contract – when necessary to fulfill our agreement with you.
  • Legal obligation – to comply with applicable laws.
  • Legitimate interests – for fraud prevention, security, and improving our services.

5. Your Rights Under GDPR

Under GDPR, you have the following rights:

βœ” Right to Access – Request access to your personal data.
βœ” Right to Rectification – Correct inaccurate or incomplete data.
βœ” Right to Erasure (Right to be Forgotten) – Request deletion of your personal data.
βœ” Right to Restrict Processing – Limit how we process your data.
βœ” Right to Data Portability – Receive your data in a structured format.
βœ” Right to Object – Object to data processing, especially for marketing.
βœ” Right to Withdraw Consent – Withdraw consent at any time.

To exercise any of these rights, please contact us.

6. Data Retention

We only retain personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

7. Data Security

We implement strict security measures, including:

  • Encryption of sensitive data.
  • Access controls to limit data access.
  • Regular security audits to protect against unauthorized access.

8. Third-Party Sharing

We do not sell or rent your personal data. However, we may share data with trusted third-party service providers (e.g., payment processors, analytics providers) who comply with GDPR regulations.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance user experience. You can manage your cookie preferences through your browser settings. For more details, visit our [Cookie Policy].

10. Changes to This Policy

We may update this GDPR compliance statement periodically. Any changes will be posted on this page with an updated revision date.

11. Contacting the Supervisory Authority

If you believe we have not adequately addressed your data protection concerns, you have the right to file a complaint with your local Data Protection Authority (DPA).

For any inquiries or requests, please contact us.