Effective Date: April 30, 2025
What is GDPR?
The General Data Protection Regulation (GDPR) is a privacy law that was enacted in May 2018. It governs how personal data of individuals in the European Union (EU) is collected, processed, and stored. The law applies to EU-based businesses, as well as any organization outside the EU that targets or collects personal data from individuals within the EU. This means that most companies handling the personal data of EU residents, regardless of their location, must comply with the GDPR.
Worldwide Privacy Compliance
At BluChip, we understand that our customers may operate in various regions globally. To ensure a consistent and reliable user experience, we have implemented GDPR-compliant practices across our entire platform, supporting users worldwide. BluChip assists in ensuring compliance with GDPR by processing personal data on behalf of our customers.
Lawful Bases for Processing
We only collect and process personal data when we have a lawful basis to do so. These lawful bases include:
- Consent: Where you have explicitly agreed to allow us to process your data.
- Contract: Where processing is necessary to fulfill a contract with you (e.g., providing the BluChip or BluChip Scout Services you have requested).
- Legitimate Interests: When processing is in our legitimate business interests, as long as those interests do not override your rights and freedoms.
If we rely on your consent to process your data, you have the right to withdraw or refuse consent at any time. If we rely on legitimate interests, you have the right to object to processing.