GDPR Compliance

Our Commitment to GDPR

RDKREVENUE is committed to ensuring the privacy and security of personal data belonging to EU/EEA data subjects. We comply with the General Data Protection Regulation (GDPR) (EU) 2016/679.

Data Controller

RDKREVENUE acts as a Data Controller for customer personal data used in account management, billing, and communication. For data processed on behalf of customers (e.g., website visitor data), RDKREVENUE acts as a Data Processor.

Your Rights Under GDPR

• Right of Access: Request a copy of all personal data we hold about you.
• Right to Rectification: Correct inaccurate or incomplete personal data.
• Right to Erasure: Request deletion of your personal data ("right to be forgotten").
• Right to Data Portability: Receive your data in a machine-readable format.
• Right to Object: Object to processing of your personal data for certain purposes.
• Right to Restrict Processing: Request restriction of how we use your data.

Legal Basis for Processing

We process personal data based on: (1) Contract performance — processing necessary to provide our services; (2) Legal obligation — compliance with applicable laws; (3) Legitimate interests — fraud prevention and service improvement; (4) Consent — for marketing communications.

Data Transfers

We transfer data to our data centers in the UK, Finland, and Bulgaria — all within the EU/EEA. For transfers to the USA, we use Standard Contractual Clauses (SCCs) to ensure adequate protection.

Data Retention

We retain customer data for the duration of the contractual relationship plus 3 years for legal compliance. Backup data is deleted within 90 days of account termination.

Exercise Your Rights

To exercise any of your GDPR rights, email our DPO at [email protected]. We will respond within 30 days as required by law.