GDPR Compliance

Zocket is committed to protecting personal data and complying with the General Data Protection Regulation (GDPR).

Our Commitment to GDPR

Zocket is committed to ensuring compliance with the EU General Data Protection Regulation (GDPR). We have implemented comprehensive measures to protect the personal data of our users and customers within the European Economic Area (EEA).

As both a data controller and data processor, we take our obligations seriously. We process only the minimum personal data necessary to deliver our services, and we maintain transparency about how data is collected, used, and stored.

Your Data Rights

Under the GDPR, you have the following rights regarding your personal data:

Right to Access

Request a copy of all personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data when no longer necessary.

Right to Restrict Processing

Request limitation of how we process your personal data.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing of your personal data for specific purposes.

Legal Basis for Processing

We process personal data under the following legal bases as defined by the GDPR:

  • Contract Performance: Processing necessary to fulfill our service agreement with you
  • Legitimate Interest: Processing for analytics, security, and service improvement
  • Consent: Processing for marketing communications (you can withdraw consent at any time)
  • Legal Obligation: Processing required by applicable laws and regulations

Data Protection Measures

  • Encryption of data at rest (AES-256) and in transit (TLS 1.2+)
  • Regular security audits and penetration testing
  • Role-based access control with multi-factor authentication
  • Data Processing Agreements (DPAs) with all sub-processors
  • Privacy Impact Assessments for new features and services
  • Employee training on data protection and privacy

International Data Transfers

When personal data is transferred outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) and adequacy decisions, to provide a level of data protection consistent with GDPR requirements.

Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33. Affected individuals will be notified without undue delay when the breach is likely to result in a high risk to their rights and freedoms.

Data Protection Officer

For GDPR-related inquiries, data access requests, or to exercise any of your data rights, please contact our Data Protection Officer:

Email: support@zocket.com
Address: Workafella, Nungambakam, Chennai

For more information about how we handle your personal data, please refer to our Privacy Policy.