General Data Protection Regulation (GDPR) Compliance
Last revised February 19, 2025
Your Privacy Rights Under the GDPR
At TeamRetro, we prioritize your privacy and data protection. If you are a resident of the European Economic Area (EEA), United Kingdom (UK), or Switzerland, the General Data Protection Regulation (GDPR) provides you with specific rights concerning your personal data.
Your GDPR Rights
As an EEA/UK/Swiss resident, you have the following rights regarding your personal data:
1. Right to Access
You have the right to request access to the personal data we hold about you and obtain a copy of it.
2. Right to Rectification
If your personal data is inaccurate or incomplete, you have the right to request correction.
3. Right to Erasure (“Right to Be Forgotten”)
You can request the deletion of your personal data where:
- It is no longer necessary for the purpose collected.
- You withdraw consent (where applicable).
- You object to the processing and there are no overriding legitimate grounds.
- Your data has been unlawfully processed.
4. Right to Restrict Processing
You may request to restrict the processing of your data in certain circumstances, such as when you contest its accuracy or object to its processing.
5. Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transfer it to another service provider.
6. Right to Object
You can object to processing based on legitimate interests, direct marketing, or automated decision-making.
7. Right to Withdraw Consent
If we process your data based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
8. Right to Lodge a Complaint
If you believe we have not handled your data in accordance with GDPR, you have the right to lodge a complaint with your local Data Protection Authority (DPA).
How to Exercise Your Rights
To exercise any of these rights, please contact us at:
- Email: privacy@teamretro.com
- Mailing Address: Chief Privacy Officer
GroupMap Technology Pty. Ltd.
Level 1/931 Albany Highway
East Victoria Park WA 6100
Australia
For security purposes, we may request proof of identity before processing your request.
Legal Basis for Processing Your Data
We process your data based on the following lawful grounds:
- Contract: To fulfill agreements with you.
- Legitimate Interest: To provide, secure, and improve our services.
- Consent: Where required, such as for marketing communications.
- Legal Obligation: To comply with laws and regulations.
International Data Transfers
Your data may be processed in the United States (US) or European Union (EU) depending on your selected region. We use Standard Contractual Clauses (SCCs) and other safeguards to ensure compliance with GDPR when transferring data outside the EEA.
Data Retention
We retain personal data only as long as necessary for the purposes stated or as required by law. Retention periods include:
- User-Generated Content: Stored until deleted by you or your administrator.
- Trial Accounts: Deleted 365 days after the trial ends.
- Canceled Paid Accounts: Deleted 365 days after cancellation.
- Billing Information: Retained for up to 7 years for compliance purposes.
- Backups: Retained for up to 30 days.
Security Measures
We implement appropriate technical and organizational security measures, including encryption (SSL/TLS), secure hosting, and access controls. While we strive to protect your data, no system is 100% secure.
For more details, visit our Privacy Policy.
Updates to This Notice
We may update this GDPR notice periodically to reflect regulatory changes or operational updates. The “Last Updated” date at the top indicates the latest revision.
TeamRetro remains committed to protecting your privacy.
If you have any concerns, feel free to reach out at privacy@teamretro.com.