GDPR Compliance

Last Updated: November 20, 2024

Introduction

At Creation Wave LLC, we are committed to protecting the privacy and personal data of our users in compliance with the General Data Protection Regulation (GDPR). This GDPR Compliance Statement outlines how we collect, use, store, and protect personal data from individuals within the European Economic Area (EEA).

Data Controller Information

For any questions regarding these, please contact us:

Company Name: Creation Wave LLC
Physical Office Address:
9th Floor, Grameen Telecom Bhaban,
Zoo Road, Dhaka 1216

Registered Office Address:
1309 Coffeen Avenue, STE 1200
Sheridan, Wyoming 82801

Email: contact@creationwave.com

Data Protection Officer (DPO):
Name: Sakib Shahriar Tanoy
Email: sakib@creationwave.com

Types of Personal Data Collected

We collect the following personal data:

• Contact Information: Names, email addresses, phone numbers.
• Technical Information: IP addresses.
• Usage Data: Information collected via cookies and similar technologies.

We do not collect any special categories of personal data (e.g., health information, biometric data).

Purpose and Legal Basis for Processing

We process personal data for the following purposes:

1. Providing Services: To deliver the services you have requested, including custom development, plugin services, and consultancy.
   • Legal Basis: Consent (Article 6(1)(a) GDPR)
2. Marketing: To send promotional materials and updates about our services.
   • Legal Basis: Consent (Article 6(1)(a) GDPR)

Methods of Data Collection

• Direct Collection: Through website forms, account registrations, and when you contact us directly.
• Automatic Collection: Using cookies and similar tracking technologies when you visit our website.

Use of Personal Data

We use your personal data to:

• Provide and maintain our services.
• Communicate with you regarding your inquiries or services.
• Send marketing communications (only if you have opted in).
• Improve our website and services through analytics.

Data Sharing and Disclosure

We may share your personal data with:

• Payment Processors: To facilitate transactions.
• Analytics Providers: To analyze website usage and improve our services.

International Data Transfers

Personal data may be transferred outside the EEA. When we do so, we implement safeguards such as Standard Contractual Clauses to ensure your data is protected in accordance with GDPR.

Data Retention Policy

We retain personal data for an unlimited time to fulfill the purposes outlined in this policy unless a longer retention period is required or permitted by law.

Criteria for Retention:

• Legal obligations.
• Necessity for service provision.
• User requests for deletion or modification.

Rights of Data Subjects

Under GDPR, you have the following rights:

1. Right of Access: Request access to your personal data.
2. Right to Rectification: Request correction of inaccurate or incomplete data.
3. Right to Erasure: Request deletion of your personal data.
4. Right to Restrict Processing: Request limitation on how we process your data.
5. Right to Data Portability: Request transfer of your data to another service.
6. Right to Object: Object to the processing of your personal data.

To exercise any of these rights, please contact us at contact@creationwave.com.

Consent Withdrawal

• How to Withdraw Consent: You can withdraw your consent at any time by disabling cookies in your browser settings or contacting us at contact@creationwave.com.
• Effect of Withdrawal: Upon withdrawal, we will cease processing your personal data for the purposes you initially consented to, unless there is an overriding legitimate interest or legal obligation.

Cookies and Similar Technologies

We use cookies and similar tracking technologies to enhance your experience and analyze usage.

• Types of Cookies Used:
  • Essential Cookies: Necessary for website functionality.
  • Performance Cookies: Collect data on website usage.
  • Functional Cookies: Remember your preferences.
  • Marketing Cookies: Track user behavior for marketing purposes.

Opt-Out Options:

• Manage your cookie preferences through our cookie consent banner.
• Disable cookies via your browser settings.

For more details, please refer to our Cookie Policy.

Data Security Measures

We implement appropriate technical and organizational measures to protect your personal data:

• Technical Measures:
  • Encryption of data in transit (SSL certificates).
  • Secure servers and firewalls.
• Organizational Measures:
  • Employee training on data protection.
  • Access controls limiting data access to authorized personnel.
  • Data protection policies and procedures.

Data Breach Notification

In the event of a personal data breach, we will:

1. Assess the Breach: Immediately investigate the nature and scope of the breach.
2. Contain the Breach: Take necessary steps to prevent further unauthorized access.
3. Notify Authorities: If required, notify the relevant supervisory authority within 72 hours.
4. Inform Affected Individuals: If the breach is likely to result in a high risk to your rights and freedoms, we will inform you without undue delay.
5. Review and Prevent: Analyze the cause and update our security measures to prevent future breaches.

Contact Information

For any questions regarding these, please contact us:

Company Name: Creation Wave LLC
Physical Office Address:
9th Floor, Grameen Telecom Bhaban,
Zoo Road, Dhaka 1216

Registered Office Address:
1309 Coffeen Avenue, STE 1200
Sheridan, Wyoming 82801

Email: contact@creationwave.com

Data Protection Officer (DPO):
Name: Sakib Shahriar Tanoy
Email: sakib@creationwave.com

Changes to This Statement

We may update this GDPR Compliance Statement from time to time. Any changes will be posted on this page with an updated revision date.

Notification of Changes:

• We will notify you of significant changes via email or a prominent notice on our website.