LicenseChain
GDPR Compliance

GDPR Compliance

Your rights under the General Data Protection Regulation (GDPR) and how LicenseChain protects your personal data.

Last updated: January 2, 2025

What is GDPR?

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018, in the European Union (EU) and European Economic Area (EEA). GDPR strengthens and unifies data protection for individuals within the EU and addresses the export of personal data outside the EU.

LicenseChain is fully committed to GDPR compliance and respects your privacy rights. This page explains your rights under GDPR and how you can exercise them.

Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

1. Right to Access (Article 15)

You have the right to obtain confirmation as to whether or not we process your personal data, and access to that data along with certain information about how we process it.

How to exercise: Contact us at legal@licensechain.app with the subject "GDPR Data Access Request"

2. Right to Rectification (Article 16)

You have the right to have inaccurate personal data corrected and incomplete personal data completed.

How to exercise: Update your information in your account settings or contact us at legal@licensechain.app

3. Right to Erasure ("Right to be Forgotten") (Article 17)

You have the right to request deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.

How to exercise: Delete your account from Settings or contact us at legal@licensechain.app with the subject "GDPR Data Deletion Request"

4. Right to Restrict Processing (Article 18)

You have the right to restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or object to processing.

How to exercise: Contact us at legal@licensechain.app with the subject "GDPR Restrict Processing Request"

5. Right to Data Portability (Article 20)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

How to exercise: Contact us at legal@licensechain.app with the subject "GDPR Data Portability Request"

6. Right to Object (Article 21)

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

How to exercise: Unsubscribe from marketing emails or contact us at legal@licensechain.app with the subject "GDPR Objection Request"

7. Rights Related to Automated Decision-Making (Article 22)

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you.

Note: LicenseChain does not use automated decision-making that produces legal effects.

Data Processing Information

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contract Performance: To provide our license management services
  • Legitimate Interests: To improve our services, prevent fraud, and ensure security
  • Consent: For marketing communications and optional features
  • Legal Obligations: To comply with applicable laws and regulations

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in our Privacy Policy, unless a longer retention period is required by law:

  • Account Data: Retained while your account is active and for 30 days after deletion
  • License Data: Retained for the duration of the license and 7 years for legal compliance
  • Transaction Data: Retained for 7 years for tax and accounting purposes
  • Marketing Data: Retained until you unsubscribe or withdraw consent

International Data Transfers

Your personal data may be transferred to and processed in countries outside the EEA. We ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other legally recognized transfer mechanisms

How to Exercise Your Rights

Via Email

Send your request to legal@licensechain.app with:

  • Subject line indicating the type of request (e.g., "GDPR Data Access Request")
  • Your full name and email address associated with your account
  • Description of the specific right you wish to exercise
  • Any additional information that may help us process your request

Via Account Settings

Some rights can be exercised directly through your account:

  • Access: View your data in account settings
  • Rectification: Update your profile information
  • Erasure: Delete your account from Settings
  • Marketing Opt-out: Unsubscribe from email preferences

Response Time

We will respond to your GDPR request within 30 days of receipt. For complex requests, we may extend this period by an additional 60 days, and we will inform you of any extension.

Identity Verification

To protect your privacy, we may need to verify your identity before processing certain requests. This may involve asking for additional information or documentation.

Data Protection Officer

For questions, concerns, or to exercise your GDPR rights, you can contact our Data Protection Officer:

Email: legal@licensechain.app

Subject: "GDPR Inquiry - Data Protection Officer"

We are committed to addressing all GDPR-related inquiries promptly and transparently.

Right to Lodge a Complaint

If you believe that our processing of your personal data violates GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.

You can find your local supervisory authority at: European Data Protection Board

However, we encourage you to contact us first at legal@licensechain.app so we can address your concerns directly.

Security Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data in transit and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication mechanisms
  • Employee training on data protection
  • Incident response and breach notification procedures
  • Regular backups and disaster recovery plans

Questions About GDPR?

If you have any questions about our GDPR compliance or wish to exercise your rights, please contact us:

Email: legal@licensechain.app

Subject: "GDPR Inquiry"

We typically respond within 1-2 business days.

Contact Us