GDPR Compliance
Last updated: May 23, 2025
Introduction
At Blogify, we are committed to protecting your personal data and respecting your privacy. This GDPR Compliance Statement explains how we comply with the General Data Protection Regulation (GDPR), which is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area.
The GDPR gives individuals greater control over their personal data and imposes certain obligations on businesses that process the personal data of EU citizens or residents.
Data Protection Principles
Under the GDPR, we adhere to the following data protection principles:
Lawfulness, Fairness, and Transparency
We process personal data lawfully, fairly, and in a transparent manner.
Purpose Limitation
We collect personal data for specified, explicit, and legitimate purposes and do not process it in a manner that is incompatible with those purposes.
Data Minimization
We ensure that personal data we process is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.
Accuracy
We take reasonable steps to ensure that personal data is accurate and, where necessary, kept up to date.
Storage Limitation
We keep personal data in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed.
Integrity and Confidentiality
We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
Accountability
We are responsible for and can demonstrate compliance with the GDPR.
Your Rights Under GDPR
The GDPR provides the following rights for individuals:
Right to Information
You have the right to be informed about the collection and use of your personal data.
Right of Access
You have the right to access your personal data and supplementary information.
Right to Rectification
You have the right to have inaccurate personal data rectified, or completed if it is incomplete.
Right to Erasure
You have the right to have your personal data erased in certain circumstances.
Right to Restrict Processing
You have the right to request the restriction or suppression of your personal data in certain circumstances.
Right to Data Portability
You have the right to obtain and reuse your personal data for your own purposes across different services.
Right to Object
You have the right to object to the processing of your personal data in certain circumstances.
Rights Related to Automated Decision Making
You have rights related to automated decision making and profiling.
Data We Collect
We collect and process the following categories of personal data:
Account Information
When you create an account, we collect your name, email address, and password.
Profile Information
When you complete your profile, we collect additional information such as your bio, profile picture, and social media links.
Content Information
When you create or interact with content on our platform, we collect information about your posts, comments, likes, and shares.
Usage Information
We collect information about how you use our platform, including your browsing history, search queries, and interactions with features.
Device Information
We collect information about the devices you use to access our platform, including your IP address, browser type, and operating system.
Location Information
We collect information about your general location based on your IP address.
Legal Basis for Processing
We process your personal data on the following legal bases:
Consent
We process your personal data based on your consent, which you can withdraw at any time.
Contract
We process your personal data to fulfill our contractual obligations to you.
Legitimate Interests
We process your personal data based on our legitimate interests, such as improving our services and preventing fraud.
Legal Obligation
We process your personal data to comply with our legal obligations.
Data Transfers
We may transfer your personal data to third parties in the following circumstances:
Service Providers
We may share your personal data with service providers who perform services on our behalf, such as hosting, analytics, and customer support.
Business Transfers
If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction.
Legal Requirements
We may disclose your personal data if required to do so by law or in response to valid requests by public authorities.
When we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your personal data, such as Standard Contractual Clauses approved by the European Commission.
Data Retention
We retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
Data Security
We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:
- Encryption of personal data
- Regular testing of security measures
- Access controls and authentication procedures
- Regular backups
- Staff training on data protection
Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this GDPR Compliance Statement. If you have any questions about this GDPR Compliance Statement, including any requests to exercise your legal rights, please contact our DPO using the details set out below.
Contact Details
Data Protection Officer
Blogify
Email: dpo@blogify.com
Address: 123 Blog Street, Content City, BC 12345
How to Exercise Your Rights
You can exercise your rights under the GDPR by:
- Contacting our Data Protection Officer at dpo@blogify.com
- Using the privacy settings in your account
- Submitting a request through our contact form
We will respond to your request within one month. This period may be extended by two further months where necessary, taking into account the complexity and number of the requests.
Complaints
You have the right to make a complaint at any time to the supervisory authority for data protection issues in your country. We would, however, appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.
Changes to This GDPR Compliance Statement
We may update our GDPR Compliance Statement from time to time. We will notify you of any changes by posting the new GDPR Compliance Statement on this page and updating the "Last updated" date at the top of this page.
You are advised to review this GDPR Compliance Statement periodically for any changes. Changes to this GDPR Compliance Statement are effective when they are posted on this page.
For more information about how we protect your data, please read our Privacy Policy and Cookie Policy pages.