Introduction
At Sofustore.com, we are committed to protecting the privacy and security of our users’ personal data. This GDPR Compliance Policy outlines our approach to compliance with the General Data Protection Regulation (GDPR) and our commitment to safeguarding the rights of individuals regarding their personal data.

Data Protection Principles
We process personal data lawfully, fairly, and transparently, ensuring individuals understand how their data is being used.

Purpose limitation
We collect and process personal data for specified, explicit, and legitimate purposes and do not process it in a manner incompatible with those purposes.

Data minimization
We only collect and process personal data that is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.

Accuracy
We take reasonable steps to ensure personal data is accurate and kept up-to-date, with inaccuracies promptly rectified

Storage limitation
We store personal data for no longer than necessary for the purposes for which it is processed.

Integrity and confidentiality
We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

Data Subject Rights
We respect the rights of individuals regarding their personal data and ensure they can exercise these rights effectively. These rights include:

  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to erasure right to be forgotten
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • Rights in relation to automated decision making and profiling

Lawful Basis for Processing
We only process personal data when we have a lawful basis for doing so. This includes:

  • Consent: We obtain explicit consent from individuals before processing their personal data for specific purposes.
  • Contractual necessity: We process personal data as necessary for the performance of a contract with the individual.
  • Legal obligation: We process personal data to comply with legal obligations.
  • Legitimate interests: We may process personal data based on legitimate interests pursued by Sofustore or a third party.

Data Protection and Security
Our approach to ensuring a risk-appropriate degree of security involves the implementation of suitable technical and organizational measures, such as:

  • Encryption of personal data
  • Access controls and authentication mechanisms
  • Regular security assessments and audits
  • Employee training on data protection and security
    • We integrate data protection considerations into the design and implementation of our systems, processes, and services from the outset, ensuring that privacy and data protection are integral to our operations.

Data Breach Notification
In the event of a data breach involving personal data, we will notify the relevant supervisory authority and affected individuals without undue delay, where feasible, in accordance with GDPR requirements.

Compliance Monitoring and Review
We regularly review and update our GDPR compliance measures to ensure ongoing effectiveness and alignment with regulatory requirements.

Contact Information
At Sofustore, we are dedicated to upholding the principles and requirements of the GDPR, ensuring that personal data is processed lawfully, fairly, and transparently, with due respect for the rights of individuals. For inquiries or concerns regarding data protection and GDPR compliance at Sofustore, please contact us at [[email protected]].

My Cart
Close Wishlist
Close Recently Viewed
Compare Products (0 Products)
Compare Product
Compare Product
Compare Product
Compare Product
Categories