GDPR Policy – AutoEliteCA

This GDPR Policy explains how we process personal data of users from the European Union, in accordance with the General Data Protection Regulation.

1. Lawful Basis

We process data based on user consent, contractual obligations, or legitimate interests.

2. Types of Data Collected

Includes personal identifiers, contact information, preferences, IP addresses, and browsing behavior.

3. Data Subject Rights

EU users may request data access, correction, deletion, restriction, or data portability at any time.

4. International Transfers

Data transfers outside the EU are protected with standard contractual clauses and encryption standards.

5. Third-Party Processors

We partner only with GDPR-compliant processors for hosting, analytics, and communications.

6. Retention Policy

Personal data is stored no longer than necessary for service delivery or regulatory obligations.

7. Security Measures

Your data is protected by firewalls, access controls, SSL encryption, and secure storage.

8. Contact and Complaints

To exercise rights or file a complaint, email gdpr@autoeliteca.com or contact your local supervisory authority.