GDPR Compliance Statement

Effective Date: May 6, 2025

1. Our Commitment

CryptoSup Lab is fully committed to compliance with the European Union’s General Data Protection Regulation (GDPR). We take privacy seriously and protect the rights of all users — including residents of the EU and EEA — with transparency, integrity, and accountability.

2. Lawful Basis for Processing

We collect and process personal data based on one or more of the following lawful grounds:

• Performance of a contract (e.g., granting course access)
• User consent (e.g., subscribing to a newsletter)
• Compliance with legal obligations (e.g., invoicing)
• Legitimate business interests (e.g., improving user experience)

3. Your GDPR Rights

As a data subject under the GDPR, you have the right to:

• Access and review your personal data
• Correct any inaccuracies in your data
• Withdraw previously granted consent at any time
• Request deletion of your data ("right to be forgotten")
• Receive your data in a portable format (data portability)
• Object to processing, especially for marketing purposes

4. International Transfers

CryptoSup Lab may store or process data on secure servers located outside the European Economic Area, including in Canada. All such transfers are safeguarded via standard contractual clauses and encryption protocols in accordance with GDPR requirements.

5. Data Retention

We retain your data only for as long as necessary to fulfill contractual, legal, or operational purposes, after which it is securely deleted or anonymized.

6. Contact Our Data Protection Officer

To exercise any of your rights under the GDPR or to raise privacy-related concerns, please contact our Data Protection Officer (DPO) at dpo@cryptosuplanglab.com.