Our Commitment
Perfect CSR AI is fully compliant with the General Data Protection Regulation. We process personal data lawfully, fairly, and transparently while ensuring EU residents' rights are protected.
Legal Bases for Processing
- Contract: Processing to provide our AI services
- Legitimate Interest: Business operations and security
- Consent: Marketing communications (withdrawable)
- Legal Obligation: Compliance with applicable laws
Your Rights
- Access — Request a copy of your personal data
- Rectification — Correct inaccurate information
- Erasure — Request deletion of your data
- Restriction — Limit how we process your data
- Portability — Receive data in a structured format
- Object — Object to certain processing activities
Exercising Your Rights
Contact our Data Protection Officer to exercise any right. We respond within 30 days. You can also use data management tools in your account dashboard.
International Transfers
When transferring data outside the EEA, we use Standard Contractual Clauses approved by the European Commission and maintain data processing agreements with all sub-processors.
Data Retention
- Account Data: While active, deleted within 30 days of closure
- Training Data: Deleted on account termination
- Conversations: Per your settings, default 90 days
- Billing: 7 years (legal requirement)
Supervisory Authority
If unsatisfied with our handling of your data, you may lodge a complaint with your local data protection authority.