GDPR Compliance Information
Last Updated: January 2024
1. GDPR Overview
The General Data Protection Regulation (GDPR) protects personal data of individuals in the European Union. Iron Cascade is committed to GDPR compliance for all EU visitors and customers.
2. Data Controller
Iron Cascade acts as the data controller for personal information collected through our services. Contact: [email protected]
3. Legal Basis for Processing
We process personal data based on: contract performance (booking fulfillment), legitimate interests (marketing and service improvement), legal obligations, and your consent where required.
4. Your Data Subject Rights
Under GDPR, you have the right to access, rectify, erase, restrict processing, data portability, object to processing, and withdraw consent at any time.
5. Right to Access
You can request confirmation of whether we process your personal data and obtain a copy of that data.
6. Right to Rectification
You may request correction of inaccurate or incomplete personal data we hold about you.
7. Right to Erasure
You can request deletion of your personal data under certain circumstances, subject to legal retention requirements.
8. Right to Restriction
You may request we limit processing of your personal data in specific situations.
9. Right to Data Portability
You can request your personal data in a structured, commonly used format for transfer to another controller.
10. Right to Object
You may object to processing based on legitimate interests or for direct marketing purposes.
11. Automated Decision-Making
We do not use automated decision-making or profiling that produces legal or similarly significant effects.
12. Data Breach Notification
We will notify relevant supervisory authorities and affected individuals of data breaches as required by GDPR.
13. Data Protection Officer
For GDPR inquiries, contact our data protection team at [email protected]
14. Supervisory Authority
You have the right to lodge a complaint with your local data protection authority if you believe we've violated GDPR.
15. Exercising Your Rights
To exercise any GDPR rights, email [email protected] with your request. We'll respond within 30 days.