GDPR Compliance

We are committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR).

Last updated: March 16, 2026

What is GDPR?

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. It applies to all organizations operating within the EU and those that offer goods or services to individuals in the EU, regardless of where the organization is based.

At Boomlet Media, we are committed to ensuring that your personal data is processed in accordance with GDPR requirements. This page explains your rights under GDPR and how we protect your data.

Your Rights Under GDPR

Right to Access

You have the right to request access to your personal data and receive information about how we process it.

Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances.

Right to Restriction

You have the right to request restriction of processing in certain circumstances.

Right to Portability

You have the right to receive your personal data in a structured, machine-readable format.

Right to Object

You have the right to object to processing of your personal data in certain circumstances.

How We Process Your Data

Purpose	Legal Basis	Data Retention
Account Management	Contract Performance	Duration of account + 7 years
Campaign Management	Contract Performance	Duration of campaign + 3 years
Customer Support	Legitimate Interest	3 years after last contact
Analytics & Improvement	Legitimate Interest	2 years
Marketing Communications	Consent	Until consent withdrawal
Legal Compliance	Legal Obligation	As required by law

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure that such transfers comply with GDPR requirements through appropriate safeguards.

Adequacy Decisions

We transfer data to countries that have been deemed adequate by the European Commission.

Canada
Israel
New Zealand
Switzerland

Standard Contractual Clauses

For transfers to other countries, we use Standard Contractual Clauses approved by the European Commission.

United States
India
Other countries as needed

Data Protection Measures

Technical Measures

Encryption of data in transit and at rest
Regular security assessments
Access controls and authentication
Secure data centers
Regular backups and disaster recovery

Organizational Measures

Data protection training for staff
Data protection impact assessments
Incident response procedures
Regular policy reviews
Vendor due diligence

Exercise Your GDPR Rights

Use the form below to exercise your GDPR rights. We will respond to your request within 30 days.

Request Type *

First Name *

Last Name *

Email Address *

Request Description *

I confirm that I am the data subject or have authority to act on their behalf

Data Protection Officer

For any GDPR-related inquiries or concerns, you can contact our Data Protection Officer:

Email: dpo@boomletmedia.com

Phone: +91 98765 43211

Address: Boomlet Media Pvt Ltd
123 Business Park, Andheri West
Mumbai, Maharashtra 400058, India

You also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.