gdpr

GDPR Policy

Last updated: [Insert date]

1. Introduction

At YG Digitech, we value your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (EU 2016/679) (“GDPR”).
This policy explains how we collect, process, and protect personal data when providing our digital services — including AvatarCard, Smart Video Avatars, and other related solutions.

We process personal data lawfully, fairly, and transparently, and only for legitimate purposes.

2. Data Controller

The Data Controller responsible for your personal data is:
YG Digitech
📧 Email: support@ygdigitech.com
🌍 Website: https://ygdigitech.com
📍 Address: [Insert business address]

3. Legal Basis for Data Processing

We process personal data under the following legal bases defined in Article 6 of the GDPR:

  • Consent: when you voluntarily submit data through our website forms.
  • Contractual necessity: to perform or prepare a service agreement (e.g., creating your AvatarCard).
  • Legal obligation: to comply with applicable EU and national laws.
  • Legitimate interest: for improving services, analytics, and ensuring website security.

4. Types of Data We Collect

We may collect and process the following categories of personal data:

  • Name, company, position, and contact information (email, phone, WhatsApp).
  • Files or media you upload (logos, images, business information).
  • IP address, browser type, location data, and website activity logs.
  • Any additional information voluntarily submitted via forms or email communication.

5. Purpose of Data Processing

Your personal data is collected and used for the following purposes:

  • To create and deliver your personalized AvatarCard or digital identity.
  • To provide support and respond to inquiries.
  • To maintain client relationships and communicate updates.
  • To comply with accounting, legal, or contractual obligations.
  • To improve user experience and website functionality.

We do not use personal data for automated decision-making or profiling that produces legal or significant effects.

6. Data Retention

We store personal data only as long as necessary for the purposes outlined above or as required by law.
When data is no longer required, it is securely deleted or anonymized.

7. Data Sharing and Transfers

We do not sell or rent your personal information.
Data may be shared only with:

  • Trusted service providers (e.g., hosting companies, analytics platforms, or payment processors).
  • Legal authorities if required by law.

If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) or other approved mechanisms.

8. Your Rights Under the GDPR

You have the following rights regarding your personal data:

  • Right of access – request a copy of the data we hold about you.
  • Right to rectification – correct inaccurate or incomplete data.
  • Right to erasure – request deletion (“right to be forgotten”).
  • Right to restriction of processing – limit how we use your data.
  • Right to data portability – receive your data in a structured, machine-readable format.
  • Right to object – oppose data processing based on legitimate interest.
  • Right to withdraw consent – at any time, where processing relies on consent.

To exercise any of these rights, please contact us at support@ygdigitech.com.

You also have the right to lodge a complaint with your local Data Protection Authority (DPA) if you believe your rights are violated.

9. Data Security

We use industry-standard security measures, including encryption, firewalls, and access controls, to protect your personal data from unauthorized access, alteration, or disclosure.

10. Data Breach Procedure

In the unlikely event of a personal-data breach, we will:

  • Notify the relevant Data Protection Authority within 72 hours (if required).
  • Inform affected individuals without undue delay, when there is a high risk to their rights and freedoms.
  • Take immediate steps to mitigate the impact and prevent recurrence.

11. Updates to This Policy

This GDPR Policy may be updated periodically to reflect changes in our business practices or legislation.
The most recent version will always be available on our website.

12. Contact

If you have any questions regarding GDPR compliance, please contact our Data Protection Team:
📧 support@ygdigitech.com
🌍 https://ygdigitech.com