GDPR Compliance
Xuulu is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Data Protection
We implement robust security measures to protect your personal data from unauthorized access, alteration, or disclosure.
Your Rights
You have comprehensive rights under GDPR, including access, rectification, erasure, and data portability.
Transparency
We provide clear information about how we process your data and maintain transparency in all our data practices.
Legal Basis for Processing
Contractual Necessity
We process your personal data when it is necessary for the performance of our contract with you, including providing our recruitment services and maintaining your account.
Legitimate Interests
We may process your data based on our legitimate interests, such as improving our services, preventing fraud, and ensuring platform security, provided these interests do not override your fundamental rights.
Consent
For certain processing activities, such as marketing communications, we rely on your explicit consent, which you can withdraw at any time.
Your Rights Under GDPR
Right of Access
You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and to access that data.
Right to Rectification
You have the right to have inaccurate personal data corrected and incomplete personal data completed.
Right to Erasure
You have the right to request the deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the original purpose.
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used format and to transmit that data to another controller.
Right to Object
You have the right to object to the processing of your personal data for direct marketing purposes or when processing is based on legitimate interests.
Data Security Measures
Technical Safeguards
We implement industry-standard encryption, secure data transmission protocols, and regular security assessments to protect your personal data.
Organizational Measures
We maintain strict access controls, conduct regular staff training on data protection, and have established data protection policies and procedures.
Data Breach Response
In the event of a data breach, we have established procedures to detect, assess, and respond to breaches, including notifying relevant authorities and affected individuals where required.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in our privacy policy, comply with legal obligations, resolve disputes, and enforce our agreements.
When personal data is no longer needed, we securely delete or anonymize it in accordance with our data retention policies and applicable law.
Contact Information
If you have any questions about our GDPR compliance or wish to exercise your rights, please contact us: