GDPR Policy – AutoEliteCA
This GDPR Policy explains how we process personal data of users from the European Union, in accordance with the General Data Protection Regulation.
1. Lawful Basis
We process data based on user consent, contractual obligations, or legitimate interests.
2. Types of Data Collected
Includes personal identifiers, contact information, preferences, IP addresses, and browsing behavior.
3. Data Subject Rights
EU users may request data access, correction, deletion, restriction, or data portability at any time.
4. International Transfers
Data transfers outside the EU are protected with standard contractual clauses and encryption standards.
5. Third-Party Processors
We partner only with GDPR-compliant processors for hosting, analytics, and communications.
6. Retention Policy
Personal data is stored no longer than necessary for service delivery or regulatory obligations.
7. Security Measures
Your data is protected by firewalls, access controls, SSL encryption, and secure storage.
8. Contact and Complaints
To exercise rights or file a complaint, email gdpr@autoeliteca.com or contact your local supervisory authority.