GDPR Compliance
CTrial.ai is committed to protecting the personal data of individuals in the European Union in accordance with the General Data Protection Regulation.
Our GDPR Commitment
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that applies to organizations processing personal data of EU residents. CTrial.ai has implemented robust measures to ensure compliance with GDPR requirements, protecting your rights and maintaining the highest standards of data protection.
Lawful Basis for Processing
We process personal data based on one or more of the following lawful bases:
Contract Performance
Processing necessary to fulfill our contractual obligations to you.
Legitimate Interests
Processing necessary for our legitimate business interests, balanced against your rights.
Legal Obligation
Processing required to comply with applicable laws and regulations.
Consent
Where you have given explicit consent for specific processing activities.
Your Rights Under GDPR
If you are an EU resident, you have the following rights:
Right to Access
Request a copy of your personal data that we hold.
Right to Rectification
Request correction of inaccurate or incomplete personal data.
Right to Erasure
Request deletion of your personal data under certain circumstances.
Right to Restrict Processing
Request limitation of processing of your personal data.
Right to Data Portability
Receive your personal data in a structured, commonly used format.
Right to Object
Object to processing based on legitimate interests or for direct marketing.
Right to Withdraw Consent
Withdraw consent at any time where processing is based on consent.
Data Protection Measures
Privacy by Design
Data protection principles are integrated into the development of our products and services from the ground up.
Data Minimization
We collect only the personal data necessary for the specified purposes, nothing more.
Storage Limitation
Personal data is retained only for as long as necessary to fulfill the stated purposes.
Security
Appropriate technical and organizational measures protect personal data at all times.
International Data Transfers
When we transfer personal data outside the European Economic Area, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
Data Processing Agreements
CTrial.ai is prepared to enter into Data Processing Agreements (DPAs) with customers as required by Article 28 of the GDPR. Our DPA outlines our obligations as a data processor.
Exercising Your Rights
To exercise any of your GDPR rights, please contact us at hello@ctrial.ai. We will respond to your request within one month, as required by GDPR.
Supervisory Authority
If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.
Questions About GDPR Compliance?
For questions about our GDPR compliance or to exercise your data protection rights, our team is here to help.