GDPR Compliance
Last updated: January 3, 2025
Overview
SheSells LLC is committed to protecting the privacy rights of individuals under the General Data Protection Regulation (GDPR). This document outlines how we comply with GDPR requirements and protect the rights of our users in the European Union.
Your Rights Under GDPR
- Right to access your personal data
- Right to rectification of incorrect data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Rights related to automated decision making
Legal Basis for Processing
We process personal data under the following legal bases:
- Consent: When you explicitly agree to the processing of your data
- Contract: When processing is necessary for the performance of our contract with you
- Legal Obligation: When we need to comply with legal requirements
- Legitimate Interests: When processing serves our legitimate business interests while respecting your rights
Data Collection and Use
We collect and process the following types of personal data:
- Account information (name, email, age verification)
- Content submission data
- Payment processing information
- Platform usage data
- Communication records
Data Protection Measures
We implement robust security measures including:
- End-to-end encryption for data transmission
- Secure data storage with encryption at rest
- Regular security audits and updates
- Staff training on data protection
- Access controls and authentication procedures
Data Retention
We retain personal data only for as long as necessary to:
- Provide our services to you
- Comply with legal obligations
- Resolve disputes
- Enforce our agreements
International Data Transfers
When transferring data outside the EU/EEA, we ensure:
- Adequate levels of data protection
- Appropriate safeguards are in place
- Standard contractual clauses where necessary
- Regular monitoring of compliance
Data Breach Procedures
In the event of a data breach, we will:
- Notify relevant supervisory authorities within 72 hours
- Inform affected individuals without undue delay
- Document all breaches and our response
- Implement measures to prevent future breaches
Data Protection Officer
For any GDPR-related queries, contact our Data Protection Officer:
- Email: dpo@shesellsllc.com
- Response Time: Within 48 hours
- Hours: Monday-Friday, 9am-5pm EST
Exercising Your Rights
To exercise your GDPR rights:
- Email: gdpr@shesellsllc.com
- Use our GDPR Rights Portal (coming soon)
- We will respond to all requests within 30 days
Updates to This Policy
We regularly review and update our GDPR compliance measures. Any changes will be posted here with an updated revision date.
