gdpr compliance
gdpr compliance
gdpr compliance
Effective Date: January 16th, 2024
Effective Date: January 16th, 2024
At MPA Trader ApS, we are committed to full compliance with the General Data Protection Regulation (GDPR), which governs how we collect, use, share, and protect personal data of individuals located in the European Union (EU) and European Economic Area (EEA).
This GDPR Policy outlines your rights and our responsibilities under the regulation.
1. What Personal Data We Collect
We collect only the data necessary to deliver and support our educational services:
a. Identity and Contact Data
Full name
Email address
Country
Account login credentials
b. Transaction and Billing Data
Payment email address
Transaction ID
Purchase history
(Note: We do not collect or store full credit card details. Stripe and PayPal process payments securely.)
c. Technical Data
IP address
Device/browser type
Login times and durations
Activity within the platform (courses visited, progress, downloads)
d. Communications
Emails or messages sent to our support team or community spaces
2. Lawful Basis for Processing Your Data
We only process your data when we have a legal basis to do so, including:
Creating and managing your account: Contractual necessity.
Processing your payment: Contractual necessity.
Sending important service communications: Legitimate interest.
Providing customer support: Contractual necessity.
Sending promotional emails (if opted-in): Consent.
Analytics and performance improvements: Legitimate interest.
Compliance with legal obligations: Legal obligation.
3. Your Rights Under GDPR
You have the following data subject rights under GDPR:
Right to Access – Request a copy of your data
Right to Rectification – Correct incorrect or incomplete data
Right to Erasure – Request deletion of your personal data
Right to Restrict Processing – Limit how we use your data
Right to Data Portability – Receive a copy in a portable format
Right to Object – Object to processing based on legitimate interest
Right to Withdraw Consent – Revoke consent at any time
📩 To exercise these rights, email us at support@mpatrader.com
We respond to all valid requests within 30 days.
4. Data Sharing and Processors
We do not sell your personal data.
We may share it with trusted third parties (data processors) who help us deliver services, including:
Stripe & PayPal (payment processing)
Google Analytics (platform performance)
Email service providers (for course updates & receipts)
Hosting providers (where the platform lives)
All third-party services are under data processing agreements (DPAs) and meet GDPR standards.
5. International Data Transfers
If we transfer your data outside the EU/EEA (e.g., to the US), we ensure it is protected by:
Standard Contractual Clauses (SCCs)
Or a decision by the European Commission that the destination country ensures adequate protection
6. Data Retention Policy
We retain personal data:
For as long as you have an active account
Until deletion is requested (where no legal obligation prevents it)
Inactive accounts may be deleted or anonymized after 24 months of inactivity.
7. Security Measures
We use technical and organizational safeguards to protect your data:
SSL encryption
Secure hosting
Hashed passwords
Access control for staff
Regular security audits and platform updates
8. Cookies and Tracking Tools
We use cookies for:
Authentication (keeping you logged in)
Tracking course progress
Analytics (Google Analytics, anonymized)
You can control cookies through your browser settings.
9. Breach Notification
In the event of a data breach that risks your rights or freedoms:
You will be notified without undue delay
We will inform the relevant Data Protection Authority within 72 hours
10. Supervisory Authority
If you believe we are mishandling your data, you have the right to lodge a complaint with your local Data Protection Authority (DPA) in the EU.
Find yours here:
https://edpb.europa.eu/about-edpb/board/members_en
11. Contact Us
For all GDPR-related requests or concerns, please contact:
📧 support@mpatrader.com
At MPA Trader ApS, we are committed to full compliance with the General Data Protection Regulation (GDPR), which governs how we collect, use, share, and protect personal data of individuals located in the European Union (EU) and European Economic Area (EEA).
This GDPR Policy outlines your rights and our responsibilities under the regulation.
1. What Personal Data We Collect
We collect only the data necessary to deliver and support our educational services:
a. Identity and Contact Data
Full name
Email address
Country
Account login credentials
b. Transaction and Billing Data
Payment email address
Transaction ID
Purchase history
(Note: We do not collect or store full credit card details. Stripe and PayPal process payments securely.)
c. Technical Data
IP address
Device/browser type
Login times and durations
Activity within the platform (courses visited, progress, downloads)
d. Communications
Emails or messages sent to our support team or community spaces
2. Lawful Basis for Processing Your Data
We only process your data when we have a legal basis to do so, including:
Creating and managing your account: Contractual necessity.
Processing your payment: Contractual necessity.
Sending important service communications: Legitimate interest.
Providing customer support: Contractual necessity.
Sending promotional emails (if opted-in): Consent.
Analytics and performance improvements: Legitimate interest.
Compliance with legal obligations: Legal obligation.
3. Your Rights Under GDPR
You have the following data subject rights under GDPR:
Right to Access – Request a copy of your data
Right to Rectification – Correct incorrect or incomplete data
Right to Erasure – Request deletion of your personal data
Right to Restrict Processing – Limit how we use your data
Right to Data Portability – Receive a copy in a portable format
Right to Object – Object to processing based on legitimate interest
Right to Withdraw Consent – Revoke consent at any time
📩 To exercise these rights, email us at support@mpatrader.com
We respond to all valid requests within 30 days.
4. Data Sharing and Processors
We do not sell your personal data.
We may share it with trusted third parties (data processors) who help us deliver services, including:
Stripe & PayPal (payment processing)
Google Analytics (platform performance)
Email service providers (for course updates & receipts)
Hosting providers (where the platform lives)
All third-party services are under data processing agreements (DPAs) and meet GDPR standards.
5. International Data Transfers
If we transfer your data outside the EU/EEA (e.g., to the US), we ensure it is protected by:
Standard Contractual Clauses (SCCs)
Or a decision by the European Commission that the destination country ensures adequate protection
6. Data Retention Policy
We retain personal data:
For as long as you have an active account
Until deletion is requested (where no legal obligation prevents it)
Inactive accounts may be deleted or anonymized after 24 months of inactivity.
7. Security Measures
We use technical and organizational safeguards to protect your data:
SSL encryption
Secure hosting
Hashed passwords
Access control for staff
Regular security audits and platform updates
8. Cookies and Tracking Tools
We use cookies for:
Authentication (keeping you logged in)
Tracking course progress
Analytics (Google Analytics, anonymized)
You can control cookies through your browser settings.
9. Breach Notification
In the event of a data breach that risks your rights or freedoms:
You will be notified without undue delay
We will inform the relevant Data Protection Authority within 72 hours
10. Supervisory Authority
If you believe we are mishandling your data, you have the right to lodge a complaint with your local Data Protection Authority (DPA) in the EU.
Find yours here:
https://edpb.europa.eu/about-edpb/board/members_en
11. Contact Us
For all GDPR-related requests or concerns, please contact:
📧 support@mpatrader.com