Effective Date:  01 January 2022

1. Introduction

Rainy Host is committed to ensuring the protection of personal data and the rights of our customers and users. This GDPR Compliance Policy outlines our practices and procedures for complying with the requirements of the General Data Protection Regulation (GDPR), a regulation in EU law on data protection and privacy in the European Union and the European Economic Area.

2. Scope

This policy applies to all personal data processed by Rainy Host, including data belonging to our employees, customers, partners, and third-party service providers.

3. Principles of GDPR

Rainy Host commits to adhere to the principles of GDPR, which include:

• Lawfulness, Fairness, and Transparency: Processing personal data in a lawful, fair, and transparent manner.
• Purpose Limitation: Collecting personal data for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
• Data Minimization: Ensuring that personal data is adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
• Accuracy: Keeping personal data accurate and up-to-date.
• Storage Limitation: Keeping personal data in a form which permits identification of data subjects for no longer than is necessary.
• Integrity and Confidentiality: Processing personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

4. Data Subject Rights

Rainy Host ensures that data subjects are afforded the following rights:

• Right to Information: Informing data subjects about how their data is being used.
• Right of Access: Allowing data subjects to access their personal data and how it is processed.
• Right to Rectification: Permitting data subjects to correct inaccurate or incomplete data.
• Right to Erasure (Right to be Forgotten): Enabling the deletion of personal data when it is no longer necessary.
• Right to Restrict Processing: Allowing data subjects to block processing of their data.
• Right to Data Portability: Facilitating the transfer of personal data from one electronic processing system to another.
• Right to Object: Permitting data subjects to object to certain types of processing, such as direct marketing.
• Rights in relation to automated decision making and profiling: Safeguarding against risk that a potentially damaging decision is made without human intervention.

5. Data Protection Measures

Rainy Host implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk. These measures include but are not limited to:

• Encryption of personal data.
• Ensuring ongoing confidentiality, integrity, availability, and resilience of processing systems.
• Restoring availability and access to personal data in a timely manner in the event of a physical or technical incident.

6. Data Breach Notification

In the event of a data breach, Rainy Host will notify the appropriate supervisory authority without undue delay and, when feasible, within 72 hours, unless the breach is unlikely to result in a risk to the rights and freedoms of natural persons.

7. Training and Awareness

Rainy Host will conduct training for employees on GDPR compliance regularly and ensure that employees are aware of the principles of data protection.

8. Changes to This Policy

This GDPR Compliance Policy may be updated periodically to reflect changes in our personal data practices or relevant laws.

9. Contact Us

For any questions or concerns regarding our GDPR Compliance Policy or data protection practices, please contact us at:

Email: support@rainyhost.com